But most of the time UDP fragmentation floods make use of a high number of bandwidth that is likely to exhaust the capability within your network card, that makes this rule optional and probably not one of the most useful a single.netfilter iptables (quickly to be replaced by nftables) is really a user-Place command line utility to configure kernel