Re: fail2ban increase loadaverage to 18

To: debian-isp@lists.debian.org
Subject: Re: fail2ban increase loadaverage to 18
From: Thomas Goirand <zigo@debian.org>
Date: Fri, 07 Sep 2012 00:08:17 +0800
Message-id: <[🔎] 5048CA71.9070909@debian.org>
In-reply-to: <503011D7.7030709@ukr.net>
References: <20120818161050.GV28928@work1> <503011D7.7030709@ukr.net>

On 08/19/2012 06:06 AM, Max wrote:
> It is necessary to limit the number of connections to sshwithiptables,
> for example:
> /sbin/iptables -p tcp -syn -dport 22-m connlimit -connlimit-above 3 -j DROP

And do not forget:
echo "1" > /proc/sys/net/ipv4/tcp_syncookies

(note: there's even an example in /etc/sysctl.conf with a link to an
article explaining what syncookies are...)

Thomas

Reply to:

Next by Date: Dell OpenManage Server Administrator (OMSA) under Squeeze on R910
Next by thread: Dell OpenManage Server Administrator (OMSA) under Squeeze on R910
Index(es):
- Date
- Thread