Re: Tcp concurrent connection limit in sp2

From: Roger Abell [MVP] (mvpNoSpam_at_asu.edu)
Date: 08/29/04

• Next message: Torgeir Bakken \(MVP\): "Re: Turing of SP2 Firewall via registry entry?"
• Previous message: Roger Abell [MVP]: "Re: Group Policy for domain administrators"
• In reply to: Fritz: "Re: Tcp concurrent connection limit in sp2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sat, 28 Aug 2004 18:07:19 -0700

Yes, but notice this DoS attack feature is not the same as the
hard limit on simultaneous connections that NT family non-server
version have always had. The DoS attack rate-limitiing feature is
distinctly different and it can be relaxed.

-- 
Roger Abell
Microsoft MVP (Windows Server System: Security)
MCDBA,  MCSE W2k3+W2k+Nt4
"Fritz" <fritz@biteme.net> wrote in message 
news:%23YjLNHEjEHA.644@tk2msftngp13.phx.gbl...
>I knew I've seen it somewhere.
>
> "The TCP/IP stack now limits the number of simultaneous incomplete 
> outbound TCP connection attempts. After the limit has been reached, 
> subsequent connection attempts are put in a queue and will be resolved at 
> a fixed rate. Under normal operation, when applications are connecting to 
> available hosts at valid IP addresses, no connection rate-limiting will 
> occur. When it does occur, a new event, with ID 4226, appears in the 
> system's event log."
>
> http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2netwk.mspx#XSLTsection127121120120
>
> "Carey Frisch [MVP]" <cnfrisch@nospamgmail.com> wrote in message 
> news:e6ieRO%23iEHA.592@TK2MSFTNGP11.phx.gbl...
>> The concurrent connections for SP2 have not been changed:
>>
>> XP Pro:  10 and  XP Home: 5
>>
>> -- 
>> Carey Frisch
>> Microsoft MVP
>> Windows XP - Shell/User
>>
>> Be Smart!  Protect Your PC!
>> http://www.microsoft.com/athome/security/protect/default.aspx
>>
>> -------------------------------------------------------------------------
>>
>> "Roman" wrote:
>>
>> | Does anyone know how to remove the security limit imposed
>> | my xp sp2 on the number of concurrent tcp connections?
>> | sp2 causes some of my programs to error with the error #
>> | 10055 because of this new limitation sp2 implements.
>
> 

---

• Next message: Torgeir Bakken \(MVP\): "Re: Turing of SP2 Firewall via registry entry?"
• Previous message: Roger Abell [MVP]: "Re: Group Policy for domain administrators"
• In reply to: Fritz: "Re: Tcp concurrent connection limit in sp2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Netstat -a shows TONS of SYN_RCVD ... > Other machines only show 24 connections. ... It's odd for a Linux box to have any service on port 445. ... DOS attack from asymmetrical routing with a problem in the return ... (comp.os.linux.security) Re: FTP Attack ... This is indeed a DOS attack against the FTP service. ... DOS there would probably have to be hundreds or thousands of connections ... Please send all responses to the relevant news group. ... read posts from Google Groups. ... (comp.sys.mac.comm) Re: securing Ubuntu and firewall ... how does a firewall protects against a DoS Attack? ... You can alternatively throttle the rate of packets ... connections without limiting the speed of established connections. ... (Ubuntu) Re: FTP Attack ... Is this a DOS attack or some other form of intrusion and what measures ... This is indeed a DOS attack against the FTP service. ... DOS there would probably have to be hundreds or thousands of connections ... keeping it busy checking and reporting all the failed logins. ... (comp.sys.mac.comm) Re: Developing a server receiving multiple sockets ... > between any 2 connections, except that they are vying for the ... The "service time" computation involves less guesswork. ... On the other hand, if your clients were on a dialup, ... 15 times as many simultaneous connections to support. ... (comp.os.linux.development.apps)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)