iptables can protect syn-flooding?

SB CH chulmin2@hotmail.com
Wed, 06 Nov 2002 05:01:33 +0000

Hello all.

I saw that we can protect syn-flooding using iptables like this.

$IPTABLES -N syn-flood
$IPTABLES -A INPUT -p tcp --syn -j syn-flood
$IPTABLES -A syn-flood -m limit --limit 1/s --limit-burst 4 -j RETURN
$IPTABLES -A syn-flood -j DROP

But I think that anyone can't protect syn-flooding attack completely using 
this rule, just some legal client can't connect the server because the rate 
limit rule in busy system.

I guess that any firewall can't protect syn-flooding except tcp intercept 
(but tcp intercept requires so much memory)

any idea?

Thanks in advance.

증권 정보 가장 빠르고 편하게 보실 수 있습니다. MSN 증권/투자