Hello,
I've been having a problem with my RH5.0 - 2.0.32 web server with SYN
floods. Here is a snippet out of my syslog:
Apr 19 15:25:41 ns1 kernel: Warning: possible SYN flood from 195.121.17.136
on 204.247.201.161:80. Sending cookies.
Apr 19 15:26:41 ns1 kernel: Warning: possible SYN flood from 199.234.156.14
on 204.247.201.166:80. Sending cookies.
Apr 19 15:27:41 ns1 kernel: Warning: possible SYN flood from 130.67.129.231
on 204.247.201.178:80. Sending cookies.
Apr 19 15:27:54 ns1 inetd[2842]: fork: Resource temporarily unavailable
Apr 19 15:28:01 ns1 last message repeated 7 times
Apr 19 15:29:01 ns1 kernel: Warning: possible SYN flood from
192.115.179.170 on 204.247.201.168:80. Sending cookies.
Apr 19 15:29:06 ns1 inetd[2842]: fork: Resource temporarily unavailable
Apr 19 15:29:38 ns1 last message repeated 10 times
Apr 19 15:29:58 ns1 last message repeated 11 times
This has the effect of locking me out of the system until the SYN flood
stops. Has anyone seen this before? Is there a way to stop this? These
SYN floods take up all of the system resources so I can't even log in. I
end up having to kill the power to reboot.
This system is a pentium II 300 with 384 megs ram. I've run both apache
1.2.5 and 1.3b5 on it and have had the same problem with both. I have two
other systems with a similar config that don't seem to have this problem.
Any suggestions?
TIA,
david
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
