[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: netbase 3.16-10 and TCP SYN cookies being enabled by default

On Tue, Feb 15, 2000 at 09:15:40AM -0200, Henrique M Holschuh wrote:
> Important bug #58141 filled against netbase, requesting to either document
> and allow configuration of new behaviour, or to revert to previous behaviour
> (do not touch SYN cookies status).

Okay, its right, the kernel uses syncookies only if a syn flood is using up
all ressources (or a heavy loaded server is configured wrong) and the sysctl
is turned on. To Check if your system would have generated syncookies
already it might help to look at the


snmp counter:

netstat -s | grep "failed conn"

  (OO)      -- Bernd_Eckenfels@Wendelinusstrasse39.76646Bruchsal.de --
 ( .. )  ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
  o--o     *plush*  2048/93600EFD  eckes@irc  +497257930613  BE5-RIPE
(O____O)  When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!

Reply to: