Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alexey Kalinin2014-10-05 16:30:39
linux
Alexey Kalinin, 2014-10-05 16:30:39

How to reduce the impact of SYN-flood?

There is a problem with the incoming SYN flood. Output "netstat -n --tcp | grep SYN_RECV | wc -l" = 512 When the SYN count drops, the network server starts responding. What methods of struggle to consider?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Alex Chistyakov, 2014-10-05
@alexclear

Enable syn cookies, for starters:
Wait, wait...
512 connections in the SYN_RECV state - is this a flood for you?
What kind of server do you have?
Upd.: Look in dmesg - your conntrack table is not overflowing, by any chance?
Usually a large number of connections (when it is really a large number of connections, 65K and above) clogs the conntrack table - and then the symptoms similar to those described by you begin. Either I did not understand the phrase "the server over the network starts to respond."

Report
V
Vladimir, 2014-10-05
@rostel

run SYNPROXY
Homemade DDoS Protection Using IPTables' "SYNPROXY"

Similar questions
R
rinaz222019-10-18 18:19:06
How to follow the link in the mobile version of the site only after the second click? 5Reply
A
AkifPetrov2018-09-27 10:26:58
How to organize real-time synchronization of files in both directions? 2Reply
R
ruslan25702020-08-20 12:02:49
How to compress all mp3 files in a directory using ffmpeg? 2Reply
C
Ciscoridze2016-04-28 14:54:21
How to learn Linux? 3Reply
D
Daniil Muidinov2018-09-28 01:39:51
How to solve Failed to initialize NSS library problem? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question