Date: Wed, 06 Jun 2012 14:31:24 -0400 From: "Simon" <simon@optinet.com> To: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: Proper Port Forwarding Message-ID: <20120606183127.68447106566B@hub.freebsd.org>
next in thread | raw e-mail | index | archive | help
Hi, Can someone suggest an alternative/proper way to port forward using ipfw. Right now I have the following and some bad clients cause too many FIN_WAIT_2 state fwd IP,PORT2 tcp from any to me dst-port PORT1 keep-state This easily causes DoS for when too many FIN_WAIT_2 are created and IPFW stops forwarding using the rule above because of "too many dynamic rules" Thanks, Simon
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20120606183127.68447106566B>