Firewalls: Re: Improving Solaris resistance to syn attacks

Firewalls
(September 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Improving Solaris resistance to syn attacks
From:	"Roderick Murchison, Jr." <murchiso @ vivid . newbridge . com>
Date:	Fri, 20 Sep 1996 08:56:50 -0400 (EDT)
To:	Geoff Mulligan <geoff @ mulligan . com>
Cc:	firewalls @ GreatCircle . COM
In-reply-to:	<199609200900 . DAA23404 @ future . mulligan . com>

On Fri, 20 Sep 1996, Geoff Mulligan wrote:

> There are two pertinent kernel variables that are settable via ndd
> 
> tcp_conn_req_max - which sets the maximum number of connections queued
> per listener (default 32). It has a maximum allowed value of 1024.

We have a couple 2.4 machines lying around, and it looks like their max
tcp_conn_req_max value is only 32.

-r

Follow-Ups:

Re: Improving Solaris resistance to syn attacks
From: Geoff Mulligan <geoff @ mulligan . com>

References:

Improving Solaris resistance to syn attacks
From: Geoff Mulligan <geoff @ mulligan . com>

Indexed By Date	Previous:	Re: NT vs. UNIX White Paper From: John_R . _Leisner @ hud . gov
Indexed By Date	Next:	Re: netra firewalls From: David Strong <dstrong @ www . os . dhhs . gov>
Indexed By Thread	Previous:	Improving Solaris resistance to syn attacks From: Geoff Mulligan <geoff @ mulligan . com>
Indexed By Thread	Next:	Re: Improving Solaris resistance to syn attacks From: Geoff Mulligan <geoff @ mulligan . com>