SYN cookies firewall version 0.9.1 for Linux kernel 2.2.12 - 2.2.17.
Written by Bordi Zhou(bordi@bronzesoft.org) Oct. 20, 2000.

NOTE:This patch is for kernel 2.2.17

Install:
  1. Get the package ip_scfw.tar.gz from http://www.bronzesoft.org or other site.
  2. Compile the kernel. Make sure the directory /usr/src/linux contains the
     original Linux kernel 2.2.17
	cd /tmp
	gzip -dc ip_scfw-0.9.1.tar.gz | tar xvf -
	cd /usr/src
	patch -p0 < /tmp/scfw-0.9.1/scfw-0.9.1-2217.patch
	make config | menuconfig | xconfig
	make dep
	make bzImage
  3. Compile the ipscfwadm.
     cd /tmp/scfw-0.9.1
     make install
  4. Copy the file /usr/src/linux/arch/i386/boot/bzImage to your kernel directory,
     re-config /etc/lilo.conf and run /sbin/lilo.
  5. Reboot.
  6. Enable the firewall. The default is disabled.
	echo 1 > /proc/sys/net/ipv4/ip_syncookies_fw
  7. Set the rule. man ipscfwadm or ipscfwadm -h
  8. SYN flooding the protected server and test.

  NOTE:
  *Be sure to enable the firewall before your test.
  *You can #define DEBUG_IP_SYN_COOKIES_FIREWALL in ip_scfw.c to see some messages.
  

Visit http://www.bronzesoft.org for help. Or mailto:bordi@bronzesoft.org