Date: Sun, 11 Aug 2024 14:15:49 +0000 From: "Patrick M. Hausen" <hausen@punkt.de> To: void <void@f-m.fm> Cc: "freebsd-net@freebsd.org" <freebsd-net@freebsd.org> Subject: Re: drop synfin Message-ID: <9E74F42B-1DA9-428A-A244-CDCC7DA65020@punkt.de> In-Reply-To: <ZrjEF9gjTdiojk60@int21h> References: <Zri7fNZMIwwjWQbM@int21h> <CAHu1Y71GY3_wWDCL9G-iDzhBwJPy7MEVFTZz4i0oceEnE5x%2Bdg@mail.gmail.com> <ZrjEF9gjTdiojk60@int21h>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi all, > Am 11.08.2024 um 16:00 schrieb void <void@f-m.fm>: >=20 > Hi, thank you for your response >=20 > On Sun, Aug 11, 2024 at 09:47:28AM -0400, Michael Sierchio wrote: >> sysrc is for editing rc files, and that's not what you want to do. >>=20 >> you may manually set the MIB with sysctl net.inet.tcp.drop_synfin=3D1 or= you >> can put this line in /etc/sysctl.conf >>=20 >> net.inet.tcp.drop_synfin=3D1 >=20 > Yes. The reason I'm asking is because I've found instructions > to do one or the other. The sysctl method is what I'd prefer. using sysrc tcp_drop_synfin=3DYES configures the system to perform a sysctl net.inet.tcp.drop_synfin=3D1 at every boot. Simple as that. Placing the sysctl line into /etc/sysctl.conf will achieve the same. I don't know why there is an "official" rc.conf valure for this particular sysctl and not for the gaziliion of other ones available. Probably just like: sysrc gateway_enable=3DYES vs. sysctl net.inet.ip.forwarding=3D1 Historical reasons :-) Kind regards, Patrick
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9E74F42B-1DA9-428A-A244-CDCC7DA65020>