From owner-freebsd-stable Fri Jan 21 4: 2:25 2000 Delivered-To: freebsd-stable@freebsd.org Received: from atlrel2.hp.com (atlrel2.hp.com [156.153.255.202]) by hub.freebsd.org (Postfix) with ESMTP id AD738152B7 for ; Fri, 21 Jan 2000 04:02:20 -0800 (PST) (envelope-from steveroo@mothra.bri.hp.com) Received: from mothra.bri.hp.com (mothra.bri.hp.com [15.144.1.185]) by atlrel2.hp.com (Postfix) with ESMTP id B756D10B7; Fri, 21 Jan 2000 07:02:17 -0500 (EST) Received: from localhost (steveroo@localhost) by mothra.bri.hp.com with ESMTP (8.8.6 (PHNE_17135)/8.7.1) id MAA27223; Fri, 21 Jan 2000 12:01:23 GMT Date: Fri, 21 Jan 2000 12:01:23 +0000 (GMT) From: Stephen Roome To: Gene Harris Cc: matt , FreeBSD-STABLE Subject: Re: Restricting RST & Dropping SYN/FIN (was; stream.c) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 21 Jan 2000, Gene Harris wrote: > Date: Fri, 21 Jan 2000 00:39:44 -0600 (CST) > From: Gene Harris > To: matt > Cc: FreeBSD-STABLE > Subject: Re: Restricting RST & Dropping SYN/FIN (was; stream.c) > > On Fri, 21 Jan 2000, matt wrote: > > > > > curious.. on 3.4-stable, cvsupped Dec. 29 1999, defaults/rc.conf has; > > > > TCP_DROP_SYNFIN and TCP_RESTRICT_RST, which point to: > > > > sysctl net.inet.tcp.drop_synfin and net.inet.tcp.restrict_rst, However: > > > > root[w01]:~# sysctl -w net.inet.tcp.restrict_rst=1 > > sysctl: unknown oid 'net.inet.tcp.restrict_rst' > > root[w01]:~# sysctl -w net.inet.tcp.drop_synfin=1 > > sysctl: unknown oid 'net.inet.tcp.drop_synfin' > > > > I think you forgot to compile the options into your kernel. > > options TCP_DROP_SYNFIN > options TCP_RESTRICT_RST Maybe it's a stupid question, but should sysctl even report these variables if they are not available to be set ? Steve To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message