Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alexey Kalinin2014-10-05 16:30:39
linux
Alexey Kalinin, 2014-10-05 16:30:39

How to reduce the impact of SYN-flood?

There is a problem with the incoming SYN flood. Output "netstat -n --tcp | grep SYN_RECV | wc -l" = 512 When the SYN count drops, the network server starts responding. What methods of struggle to consider?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Alex Chistyakov, 2014-10-05
@alexclear

Enable syn cookies, for starters:
Wait, wait...
512 connections in the SYN_RECV state - is this a flood for you?
What kind of server do you have?
Upd.: Look in dmesg - your conntrack table is not overflowing, by any chance?
Usually a large number of connections (when it is really a large number of connections, 65K and above) clogs the conntrack table - and then the symptoms similar to those described by you begin. Either I did not understand the phrase "the server over the network starts to respond."

Report
V
Vladimir, 2014-10-05
@rostel

run SYNPROXY
Homemade DDoS Protection Using IPTables' "SYNPROXY"

Similar questions
R
Roman2017-08-16 16:14:51
Yes, what's the problem? 4Reply
P
Pavel Emelyanov2018-01-16 09:11:39
Why does the extensions_additional.conf file change after entering the web interface? 3Reply
A
Anselm_nn2017-08-12 11:16:27
Inexpensive and capacious storage for backups and other files? 5Reply
M
Michael2017-08-12 11:36:09
How to connect to miniNAS in Ubuntu? 1Reply
P
pakrauce2017-08-13 14:55:17
Windows won't boot after installing Ubuntu on second disk partition |? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question