But usually UDP fragmentation floods use a high level of bandwidth that is probably going to exhaust the ability within your network card, which makes this rule optional and possibly not quite possibly the most helpful a single.netfilter iptables (shortly to get replaced by nftables) can be