Dag-Erling Smørgrav wrote: > Stefan Lambrev <stefan.lambrev_at_moneybookers.com> writes: > >> Does anyone try to see PF with "keep state" in action when under syn >> flood attack? >> > > Try "synproxy state" instead of "keep state". > > DES > From man pf.conf - Rules with synproxy will not work if pf(4) operates on a bridge(4). My short experience from today shows that synproxy can't handle syn flood with random source IP - 150kpps, but I'll test this after few days.Received on Sat Jan 26 2008 - 19:52:44 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:39:26 UTC