Fighting DDOS attacks in Linux

Check for a SYN flood:

# netstat -alnp | grep :80 | grep SYN_RECV -c 1024

Adjust network variables accordingly:

echo 1 > /proc/sys/net/ipv4/tcp_syncookies echo 30 > /proc/sys/net/ipv4/tcp_fin_timeout echo 1800 >/proc/sys/net/ipv4/tcp_keepalive_time echo 0 >/proc/sys/net/ipv4/tcp_window_scaling echo 0 >/proc/sys/net/ipv4/tcp_sack echo 0 >/proc/sys/net/ipv4/tcp_timestamps

This entry was posted on 07/02/2007 (Wednesday) at 7:45 am and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

My Sites
- MySQLTuner
- PleskHacker

Social Media

Web Links

Recent Comments
- Alex on Redundant Cloud Hosting Guide
- iain on Fix MacFusion on Snow Leopard
- iain on Fix MacFusion on Snow Leopard
- Nicolas on rpmdb: Lock table is out of available locker entries
- Anonymous on A nerd's perspective on cloud hosting

Random Posts

Tags
apache blog command line database debian development emergency fedora filesystem ftp fun general advice horde iowait iptables kernel kernel panics linux mac mail memory mysql mysqltuner network networking optimization performance perl php plesk qmail rackspace red hat rpm ruby security sendmail ssl sysadmin twitter ubuntu vmware web wordpress yum

Racker Hacker

Fighting DDOS attacks in Linux

Leave a Reply

My Sites

Social Media

Web Links

Recent Comments

Random Posts

Tags