How stop DoS and SYN attack..
Sietse van Zanen
sietse at wizdom.nu
Sun Jun 4 09:57:56 CEST 2006
There's not really very much you can do about DDOS attacks with netfilter alone. You can block the traffic ofcourse, or try to fiddle with --limit, or tcp_syn_cookies.
But usually the problem is that the amount of traffic just fills your entire Internet connecection, which renders it useless. The only thing you can do in such a situation is ask yout ISP to block the attack upstream.
And often, ISPs are very unhappy about customers being DDOS-ed.
From: netfilter-bounces at lists.netfilter.org [mailto:netfilter-bounces at lists.netfilter.org] On Behalf Of Alberto Ferrer
Sent: Saturday, June 03, 2006 10:33 PM
To: netfilter at lists.netfilter.org
Subject: How stop DoS and SYN attack..
¿any know a way to stop via Linux with iptables or related a SYN attack ?
¿where i can read something related to this?
Thanks in advance.
P.S: sorry for my bad english :D
More information about the netfilter