Linux system of SYN attack against measures - network management - hacking technology

Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall

You are here: hacking technology > network management > Content

Hot Articles

• The share network manage

• NUUO Surveillance Softwa

• Can Inforenz crack the c

• NUUO helps prevent accid

• North Somerset Council p

• Aladdin's HASP Secures C

• BT4 Internet Settings sk

• The discovery discovers

• The share network manage

• Pubwin2007 explains all

• The computer password ex

• Batch open 3389 port pro

• VoIP security crack anal

• OpenSSH Buffer Managemen

• SQL pours into the new t

Recommend Articles

The expert analyzes ten

Safeguard system clean n

Graphic solution IE8 man

SQL pours into the new t

Why can't hundreds of th

Prevents the hacker to i

Teaches you to close the

The share network manage

Chats in local area netw

About the network connec

Let the network transmis

Explains in detail virtu

To hoodlum software and

Careful system initiatio

The common wooden horse

New Articles

The GHOST of Win7 before

Windows 7 of VMware wire

Examples of skills again

360 security experts war

Give oneself of the Inte

Ensure the Web applicati

Banned WVS scanner scann

By 2010, the introductio

Website backlinks going

Win7 desktop screen

Protection were cloud se

Ensure the effective DNS

Talk about ADSL safety p

Expose a seo's attack mo

Linux (RHEL5) regular se

Linux system of SYN attack against measures

Add date: 02/26/2011 Publishing date: 02/26/2011 Hits: 2

If the Linux system under suspicion has DOS attack, can input

Netstat - an grep - I "server IP address: 80" awk "{locate 14, 20: print} ' 'time uniq - c time - n

Netstat - an grep "SYN" wc - l

This command will automatically statistical Tcp connection number of each state, if SYN_RECV high's words, he cannot eliminate have based on Tcp protocol ddos attack may, at this moment, can open tcp_syncookies and enter this command

Echo 1 > / proc/sys/asp.net/ipv4 / tcp_syncookies

If no/proc/sys/asp.net/ipv4 / tcp_syncookies illustrate your kernel does not support, need to recompile the kernel

While lowering syn retry count

Echo 1 > / proc/sys/asp.net/ipv4 / tcp_syn_retries

Echo 1 > / proc/sys/asp.net/ipv4 / tcp_synack_retries

Increase syn_backlog, in order to ensure that the user access (consumes memory for price, set too high.).

Echo "2048" > / proc/sys/asp.net/ipv4 / tcp_max_syn_backlog

If or not, so only to corresponding hardware firewall.

Prev:VSFTPD server script erection safety

Next:Linux (RHEL5) regular security measures

Comment:

Category: Home > network management