But more often than not UDP fragmentation floods use a high level of bandwidth that is probably going to exhaust the capacity of the community card, that makes this rule optional and probably not one of the most useful a single.netfilter iptables (shortly to be replaced by nftables) is a consumer-space command line utility to configure kernel packe