On Fri, Nov 07, 2008 at 08:15:36AM -0600, Phillip Gonzalez wrote: > I've seen this happen with nmap decoy scans basically it's a syn > flood. I have generated hundreds of thousands of states using this > method.
Thanks. I've set up state table size to 60 k and occasionally flush the states manually. It doesn't seem a big problem so far. Any specific settings I should use for future occurences of syn flood DoS (assuming, it's a syn flood)? -- Eugen* Leitl <a href="http://leitl.org";>leitl</a> http://leitl.org ______________________________________________________________ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Commercial support available - https://portal.pfsense.org
