Aryeh M. Friedman wrote: > Limiting closed port RST response from 266 to 200 packets/second. In the average case, someone is doing a portscan against you. In the worst case, they're trying to do a DOS attack. I suggest that you set the following sysctl variables net.inet.tcp.blackhole=2 net.inet.udp.blackhole=1 and that you read the man page for blackhole(4). P.S. this would better fit on freebsd-questions_at_ -- Pietro Cerutti PGP Public Key: http://gahr.ch/pgp
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:39:27 UTC