tcp_syncookies

To: "debian" <debian-firewall@lists.debian.org>
Subject: tcp_syncookies
From: "sim ton" <firewall38@lycos.com>
Date: Mon, 13 May 2002 04:08:27 -0700
Message-id: <[🔎] KKCJKMELFJDFFAAA@mailcity.com>
Reply-to: firewall38@lycos.com

hi,

i wanna be protected against syn flood attack ... ok ...
but i don't really know what is the best solution :
  iptables -A FORWARD -p tcp --syn -m limit --limit 1/s ACCEPT
or 
  # Enable TCP SYN Cookie Protection
  #echo 1 > /proc/sys/net/ipv4/tcp_syncookies

are there the same or not ???

tchuss
SAM



-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: tcp_syncookies
  - From: Daniel Pittman <daniel@rimspace.net>
- Re: tcp_syncookies
  - From: Bernd Eckenfels <lists@lina.inka.de>

Prev by Date: IPTables and dial-up
Next by Date: Re: tcp_syncookies
Previous by thread: IPTables and dial-up
Next by thread: Re: tcp_syncookies
Index(es):
- Date
- Thread