iptables can protect syn-flooding?
Wed, 06 Nov 2002 05:01:33 +0000
I saw that we can protect syn-flooding using iptables like this.
$IPTABLES -N syn-flood
$IPTABLES -A INPUT -p tcp --syn -j syn-flood
$IPTABLES -A syn-flood -m limit --limit 1/s --limit-burst 4 -j RETURN
$IPTABLES -A syn-flood -j DROP
But I think that anyone can't protect syn-flooding attack completely using
this rule, just some legal client can't connect the server because the rate
limit rule in busy system.
I guess that any firewall can't protect syn-flooding except tcp intercept
(but tcp intercept requires so much memory)
Thanks in advance.
증권 정보 가장 빠르고 편하게 보실 수 있습니다. MSN 증권/투자