how to preven UDP flood

hi there,

one of our networks has been flooding with UDP port 53.
i did put the following command at firewall

chain=input action=drop protocol=udp in-interface=ether1 dst-port=53

but seem uneffected.

attached is the screen shoot of the flooding.

how to preven this flooding ?

Tq

Paul

there is not flooded, is used…

someone are activated DNS on 12x.xxx.xxx.xxx machine?

you must use forward chain, not input, and “connection-state=new”!!!