But usually UDP fragmentation floods use a high amount of bandwidth that is probably going to exhaust the potential of the community card, which makes this rule optional and possibly not one of the most practical 1.netfilter iptables (shortly to get replaced by nftables) can be a consumer-Ar