There's not really very much you can do about DDOS attacks with netfilter alone. You can block the traffic ofcourse, or try to fiddle with --limit, or tcp_syn_cookies. But usually the problem is that the amount of traffic just fills your entire Internet connecection, which renders it useless. The only thing you can do in such a situation is ask yout ISP to block the attack upstream. And often, ISPs are very unhappy about customers being DDOS-ed. -Sietse -----Original Message----- From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Alberto Ferrer Sent: Saturday, June 03, 2006 10:33 PM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: How stop DoS and SYN attack.. ¿any know a way to stop via Linux with iptables or related a SYN attack ? ¿where i can read something related to this? Thanks in advance. P.S: sorry for my bad english :D -- Alberto Ferrer
