Re: Syn flood crashed my LAN

2018-02-12 Thread Tom Smyth
Agreed about ubnt vs tplink vs cisco... most use either broadcom or marvel chipsets Stuart I was sugesting based on rated performance of the chipsets in the datasheets of the managed switch... as opposed to a cheap un managed one the other thing i for got to mention which was part of my

Re: Syn flood crashed my LAN

2018-02-12 Thread Stuart Henderson
On 2018-02-12, Tom Smyth wrote: > Regards D-Link... I would recommend that you use > a decent managed switch (based on Tech Specs as opposed > to Branding, > you can pick up cost effective ubnt edgeswitches or > Tplink (fully managed Switches) which would offer

Re: Syn flood crashed my LAN

2018-02-12 Thread Rupert Gallagher
From my seat, he learned that his configuration of PF lacks SYN flooding protection. He also learned that he needs a managed switch: cisco SF and SG series are affordable and deliver ddos protection. Sent from ProtonMail Mobile On Mon, Feb 12, 2018 at 07:22, Bruno Flueckiger

Re: Syn flood crashed my LAN

2018-02-11 Thread Tom Smyth
Regards D-Link... I would recommend that you use a decent managed switch (based on Tech Specs as opposed to Branding, you can pick up cost effective ubnt edgeswitches or Tplink (fully managed Switches) which would offer linerate switching or if you want to have a branded switch get one second hand

Re: Syn flood crashed my LAN

2018-02-11 Thread Tom Smyth
Martin, Depending on the type of box you have and amount of Ram on your box (throw Resources at the problem and hope that the resources > than the attack I would look at PF Limits and increase the maximum amount of states in the firewall it is 1 by default...which is on the low side(in my

Re: Syn flood crashed my LAN

2018-02-11 Thread Martijn van Duren
Try -current[0]. I think henning will be glad to hear how his new toy works in the field. martijn@ [0] https://marc.info/?l=openbsd-cvs=151796069324365=2 On 02/12/18 01:26, Martin Hanson wrote: > Hi, > > I have a home network that is segmented into 3 different zones using a NIC > with 4 ports

Re: Syn flood crashed my LAN

2018-02-11 Thread Bruno Flueckiger
On 12.02.18 01:26, Martin Hanson wrote: > Hi, > > I have a home network that is segmented into 3 different zones using a NIC > with 4 ports sitting on an OpenBSD firewall/dhcp server. One port is > connected to the Internet (ISP router) and each of the three others has a > D-Link DGS-1005D

Syn flood crashed my LAN

2018-02-11 Thread Martin Hanson
Hi, I have a home network that is segmented into 3 different zones using a NIC with 4 ports sitting on an OpenBSD firewall/dhcp server. One port is connected to the Internet (ISP router) and each of the three others has a D-Link DGS-1005D switch connected to each. So.. LAN1 = 192.168.1.0

Re: Syn flood crashed my LAN

2018-02-11 Thread Martin Hanson