Sorry, I gave it a bad subject line. Im sure this has already been asked but is there a ipfilter equivalent to iptables connlimit to help prevent the dos mentioned in:https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.html? I have Solaris 10 systems and sun's response was to check netstat once your system becomes unresponsive. Which for Internet facing systems isnt an answer. If you have answered this already a link to that would be just fine thanks. Daniel
