Re: SYN Cookies

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

http://cr.yp.to/syncookies.html

Syn Cookies are a Kernel Capabilities, not a Netfilter one.

The rate limit just "rate" incoming TCP packet with SYN flag set.


----- Original Message -----
From: "augusto.favari" <augusto.favari@bol.com.br>
To: <netfilter@lists.netfilter.org>
Sent: Thursday, December 19, 2002 12:08 PM
Subject: SYN Cookies


Hi! I was looking for SYN Cookies help about SYN
flooding.

What is the difference about just allowing the SYN
cookies system by default in the kernel and using the IP
tables rate-limit function ?

Iptables can use SYN cookies, can't it?

Thanks,

Augusto



__________________________________________________________________________
Venha para a VilaBOL!
O melhor lugar para você construir seu site. Fácil e grátis!
http://vila.bol.com.br
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux