Peter J. Philipp <p...@centroid.eu> wrote: > Hi, > > On the NANOG list there is a thread about something synflooding: > https://mailman.nanog.org/pipermail/nanog/2019-August/102713.html > > Most of my hosts are synflooded, and I was wondering why my OpenBSD > hosts don't show any SYN_RECV states in a netstat -nafinet. I had to tcpdump > to see a synflood happening on port 53 on one of my hosts, have to > still check the other one. Could there be a bad pf rule I'm > using? I suspect this is a worm of sorts or something.
But the's the way you avoid the resource congestion: You don't create expensive global state which requires a while bunch of resource allocation, data structure shuffling, and locking.
