On Fri, 2012-01-06 at 11:36 -0800, Christ Schlacta
wrote:> I keep getting this message in my firewall log. it''s on the port
that
> is running torrents, and I suspect a misbehaving client somewhere, or a
> misbehaving ISP somewhere. I''m not overly sure, but the message
is
> quite annoying, and I''d like to suppress it if possible using
shorewall.
>
> the message is: [337786.875614] TCP: Possible SYN flooding on port
> 33760. Sending cookies.
>
> it only happens at sporadic times, but when it happens, I get literally
> hundreds of copies.
Have you tried using rate limiting on the ACCEPT rule for that port?
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don''t need a
complex
infrastructure or vast IT resources to deliver seamless, secure access to
virtual desktops. With this all-in-one solution, easily deploy virtual
desktops for less than the cost of PCs and save 60% on VDI infrastructure
costs. Try it free! http://p.sf.net/sfu/Citrix-VDIinabox