Cred ca e posibil si cu ip_conntrack pe 0, dar atunci trebuie un firewall mai bine gandit, plus NOTRACK pe tot ce excede ca numar de conexiuni acceptate/client.
On Tue, 21 Dec 2004 10:59:41 +0200, Paul Darvaru <[EMAIL PROTECTED]> wrote: > de plictiseala omu isi face de lucru :D > > ----- Original Message ----- > From: "Alin Nastac" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, December 21, 2004 10:45 AM > Subject: [rlug] Re: flood > > > Paul Darvaru wrote: > >>echo 0 > /proc/sys/net/ipv4/ip_conntrack_max ( am avut o experienta cu 3 > >>calculatoare infectate cu Welchia si a fost suficient sa-mi umple tabela > >>:) ) > >>nu ar trebui sa mai ai probleme cu conntrack-ul, "0" asta fiind no-limit > >>cica > >> > >> > >> > > bun asa, intinde-le o mina de ajutor celor care vor sa-ti puna ruterul > > pe burta. > > > > > > > > -- Attached file included as plaintext by Ecartis -- > > -- File: signature.asc > > -- Desc: OpenPGP digital signature > > > > -----BEGIN PGP SIGNATURE----- > > Version: GnuPG v1.2.6 (GNU/Linux) > > Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org > > > > iD8DBQFBx+K7jtv59x0+BrURAh0HAKC2wwn2Ecu2P+l0sfFGq4p8TxFklwCglwxf > > VLWiBSTbMiLNlvWgqvUYaOE= > > =DIcJ > > -----END PGP SIGNATURE----- > > > > > > > > --- > > Detalii despre listele noastre de mail: http://www.lug.ro/ > > > > > > --- > Detalii despre listele noastre de mail: http://www.lug.ro/ > > -- Bla bla --- Detalii despre listele noastre de mail: http://www.lug.ro/
