From owner-freebsd-hackers Sun Sep 29 11:30:09 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id LAA06288 for hackers-outgoing; Sun, 29 Sep 1996 11:30:09 -0700 (PDT) Received: from Kitten.mcs.com (Kitten.mcs.com [192.160.127.90]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id LAA06261 for ; Sun, 29 Sep 1996 11:30:07 -0700 (PDT) Received: from mailbox.mcs.com (Mailbox.mcs.com [192.160.127.87]) by Kitten.mcs.com (8.8.Beta.6/8.8.Beta.3) with SMTP id NAA18230; Sun, 29 Sep 1996 13:29:59 -0500 (CDT) Received: by mailbox.mcs.com (/\==/\ Smail3.1.28.1 #28.15) id ; Sun, 29 Sep 96 13:29 CDT Received: (from karl@localhost) by Jupiter.Mcs.Net (8.8.Beta.6/8.8.Beta.3) id NAA09746; Sun, 29 Sep 1996 13:29:52 -0500 (CDT) From: Karl Denninger Message-Id: <199609291829.NAA09746@Jupiter.Mcs.Net> Subject: Re: patch against SYN floods (RED impl.) To: apg@demos.net (Paul Antonov) Date: Sun, 29 Sep 1996 13:29:52 -0500 (CDT) Cc: apg@demos.net, guido@gvr.win.tue.nl, hackers@freebsd.org In-Reply-To: from "Paul Antonov" at Sep 28, 96 00:47:49 am X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > In message <199609271937.VAA02005@gvr.win.tue.nl> Guido van Rooij > writes: > > >> I've tested in on SYN attacks with over 1000pps rate, and it works > >> reasonably well. > > >Seeing your patch: isn't it much quicker to walk down the so_q0 list and > >get the pcb's from there? > > Surely, I just found why I was unable to do it - in the body of loop > I've written tp = sototcpcb(so) instead of tp = sototcpcb(sp) and was > much confused to see all sockets on LISTEN state :) I hate do things on > the run, but sometimes you need to ... (patch elided) I see that the tail drop patch has been committed to -CURRENT. Are there plans to commit this one in its place? -- -- Karl Denninger (karl@MCS.Net)| MCSNet - The Finest Internet Connectivity http://www.mcs.net/~karl | T1 from $600 monthly; speeds to DS-3 available | 23 Chicagoland Prefixes, 13 ISDN, much more Voice: [+1 312 803-MCS1 x219]| Email to "info@mcs.net" WWW: http://www.mcs.net/ Fax: [+1 312 248-9865] | Home of Chicago's only FULL Clarinet feed!