There are two approaches to dealing with SYN floods. Support so many tcp
connections that no one can send you enough open
request to use them all. The other is to adaptively reduce the time-out for
SYN requests based on the number of available connections that remain. In
other words, I have 20 connections available and a 30 second timeout. When
I have only 8 conections available the timeout is reduced to 10. Only 3,
reduced to 5, etc.
> -----Original Message-----
> From: Shashidhar P Patil [SMTP:[EMAIL PROTECTED]]
> Sent: Monday, August 02, 1999 9:48 PM
> To: [EMAIL PROTECTED]
> Subject: Soln for Syn flooding
>
> Hello all,
> I am new to Firewall field. I am trying for a solution for syn
> flooding. How the current implementations avoid Syn flooding ?
> what strategies do they adapt ? Point links on the net where I can
> find info about the same.
>
> Thanks in advance
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
