Firewalls: Re: SYN floods

Firewalls
(September 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: SYN floods - Throttle it
From:	Bill Stout <bill . stout @ hidata . com>
Date:	Fri, 13 Sep 1996 13:12:08 -0700
To:	Firewalls @ GreatCircle . COM

Sounds like the only solution is to place a packet 'box' in front 
of the machine that throttles SYN packets to an acceptable rate.

We now have; repeaters, bridges, routers, switches, NATs, and TCP/IP 
redirectors, maybe we'll get packet throttles, or packet throttling
routers.

        Source--->throttle--->target

Might as well build a box to throttle all packets or handshakes 
of type 'X'.  Once the SYN defense is solved, some new flood attack 
will appear. 

Anyone volunteer to build the ASIC?


Bill Stout
_______________________________________________________________________________
Senior Systems Admin   NT/UNIX/I-net/Routers/Mainframes/Janitor ;)
Hitachi Data Systems   408-970-4822   ---  Disclaimer:  I speak only for myself
___________"Infowar, Cyber-war, yes, 'they' _are_ out to get you..."___________

Indexed By Date	Previous:	Re: SYN floods - possible solution From: "William S. Duncanson" <william @ neosoft . com>
Indexed By Date	Next:	Re: SYN floods - possible solution?(update) From: Blast <blast @ worldbit . com>
Indexed By Thread	Previous:	Re: SYN floods - possible solution? From: Ryan Russell/SYBASE <Ryan . Russell @ sybase . com>
Indexed By Thread	Next:	RealSecure From: SSI <ssi @ UPT . ORG>