Disabling SSDP (Linux / Windows)

SSDP is used by some consumer-level equipment for network discovery.  It does not have any real use on public servers and is used for reflection DDoS attacks on dedicated servers.
 

On Linux machines SSDP is generally run through some type of UPNP server.  The exact one varies significantly.
For Linux, we suggest blocking this with an iptables rule, such as:
 
iptables -I INPUT 1 -p udp -m udp --dport 1900 -j DROP
  • Email, SSL
  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

Changing the Default SSH Port (Linux / CentOS)

SSH is one of the most commonly attacked services as it provides easy access to full control of...

Changing the Default SSH Port (Linux / Ubuntu / Debian)

SSH is one of the most commonly attacked services as it provides easy access to full control of a...

Disable Recursive DNS (Linux / Windows)

DNS is used to translate hostnames into IP addresses. When DNS servers are misconfigured, they...

Enabling and basic configuration of the firewall settings (Linux / Ubuntu)

Enabling the firewall will help you protect your dedicated server from unwanted connections to...

Securing NTP (Linux Only)

NTP is used for ensuring the time on your dedicated server is accurate. Some configurations of...

Powered by WHMCompleteSolution