FreeBSD firewall block syn flood attack

From: Ryan James (ryan_at_mac2.net)
Date: 05/20/03

Next message: Avleen Vig: "Re: FreeBSD firewall block syn flood attack"

Previous message: polytarp_at_cyberspace.org: "Re: Current problem reports assigned to you"
Next in thread: Avleen Vig: "Re: FreeBSD firewall block syn flood attack"
Reply: Avleen Vig: "Re: FreeBSD firewall block syn flood attack"
Reply: G.P. de Boer: "Re: FreeBSD firewall block syn flood attack"
Reply: jeremie le-hen: "Re: FreeBSD firewall block syn flood attack"
Reply: Greg Panula: "Re: FreeBSD firewall block syn flood attack"
Reply: James Ainslie: "Re: FreeBSD firewall block syn flood attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 20 May 2003 01:52:00 -0500
To: <freebsd-security@freebsd.org>

Hello,

I current have a FreeBSD 4.8 bridge firewall that sits between 7 servers and
the internet. The servers are being attacked with syn floods and go down
multiple times a day.

The 7 servers belong to a client, who runs redhat.

I am trying to find a way to do some kind of syn flood protection inside the
firewall.

Any suggestions would be greatly appreciated.

-- 
Ryan James
ryan@mac2.net
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

Next message: Avleen Vig: "Re: FreeBSD firewall block syn flood attack"

Previous message: polytarp_at_cyberspace.org: "Re: Current problem reports assigned to you"
Next in thread: Avleen Vig: "Re: FreeBSD firewall block syn flood attack"
Reply: Avleen Vig: "Re: FreeBSD firewall block syn flood attack"
Reply: G.P. de Boer: "Re: FreeBSD firewall block syn flood attack"
Reply: jeremie le-hen: "Re: FreeBSD firewall block syn flood attack"
Reply: Greg Panula: "Re: FreeBSD firewall block syn flood attack"
Reply: James Ainslie: "Re: FreeBSD firewall block syn flood attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: FreeBSD firewall block syn flood attack
... The servers are being attacked with syn floods and go down ... I don't think a firewall can achieve this, even if it has some matching ... You should tell your client to set CONFIG_SYNCOOKIES ...
(FreeBSD-Security)
RE: IIS6 Security and other web servers
... IIS6 Security and other web servers ... I know of no Windows architecture that is exposed directly to ... I know of a number of LAMP-type servers that are ... exposed directly to the Internet with no intervening layers. ...
(Security-Basics)
Re: Restrict Dynamic Updates
... exposed to the Internet is an inherently bad idea, but am in a position where ... my thought was to leave the clients pointing to the BIND/DNS ... servers to resolve all non-AD queries and redirect them to the AD/DNS servers ... internal DNS server host external public data. ...
(microsoft.public.windows.server.dns)
Re: Windows client - internet connection sharing
... or USB port on your FreeBSD box. ... This enables you to set up a 'DMZ' network, ... instance have several servers visible on the Internet. ...
(freebsd-questions)
Re: How Secure is ".Local?"
... dozen servers and ~500 websites/public domains. ... I'm weighing the importance of split-brain DNS ... >It is not going to provide your zone info to anyone ... >on the Internet since local is NOT a zone in the ...
(microsoft.public.win2000.dns)