On Fri, 2012-01-06 at 11:36 -0800, Christ Schlacta wrote: > I keep getting this message in my firewall log. it's on the port that > is running torrents, and I suspect a misbehaving client somewhere, or a > misbehaving ISP somewhere. I'm not overly sure, but the message is > quite annoying, and I'd like to suppress it if possible using shorewall. > > the message is: [337786.875614] TCP: Possible SYN flooding on port > 33760. Sending cookies. > > it only happens at sporadic times, but when it happens, I get literally > hundreds of copies.
Have you tried using rate limiting on the ACCEPT rule for that port? -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex infrastructure or vast IT resources to deliver seamless, secure access to virtual desktops. With this all-in-one solution, easily deploy virtual desktops for less than the cost of PCs and save 60% on VDI infrastructure costs. Try it free! http://p.sf.net/sfu/Citrix-VDIinabox
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
