This RFC discusses DoS mitigation at the design and implementation levels. Most of its advicen and observations pertain to routers, but a surprising amount are also relevant to pf. I suspect that the authors of pf have already considered most of these scenarios, but there may be ones they haven't considered.
http://www.isi.edu/in-notes/rfc4732.txt -- A: No. Q: Should I include quotations after my reply? <URL:http://www.subspacefield.org/~travis/> -><-
pgphegjNGvFEh.pgp
Description: PGP signature
