From owner-freebsd-security@FreeBSD.ORG Mon May 19 23:51:22 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F0A4837B404 for ; Mon, 19 May 2003 23:51:22 -0700 (PDT) Received: from dragon.eaze.net (dragon.eaze.net [216.228.128.254]) by mx1.FreeBSD.org (Postfix) with SMTP id 4F94043FB1 for ; Mon, 19 May 2003 23:51:22 -0700 (PDT) (envelope-from ryan@mac2.net) Received: (qmail 12927 invoked from network); 20 May 2003 07:24:58 -0000 Received: from mail.eaze.net (216.228.128.3) by dragon.eaze.net with SMTP; 20 May 2003 07:24:58 -0000 Received: (qmail 22329 invoked from network); 20 May 2003 07:57:11 -0000 Received: from h-66-134-7-41.dllatx37.covad.net (HELO ?192.168.0.100?) (66.134.7.41) by mail.eaze.net with SMTP; 20 May 2003 07:57:11 -0000 User-Agent: Microsoft-Entourage/10.1.1.2418 Date: Tue, 20 May 2003 01:52:00 -0500 From: Ryan James To: Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Subject: FreeBSD firewall block syn flood attack X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 06:51:23 -0000 Hello, I current have a FreeBSD 4.8 bridge firewall that sits between 7 servers and the internet. The servers are being attacked with syn floods and go down multiple times a day. The 7 servers belong to a client, who runs redhat. I am trying to find a way to do some kind of syn flood protection inside the firewall. Any suggestions would be greatly appreciated. -- Ryan James ryan@mac2.net