[nsp] TCP Intercept

From: Nick (nick@arc.net.my)
Date: Mon Oct 08 2001 - 03:05:21 EDT

Next message: Jason Lewis: "RE: [nsp] TCP Intercept"
Previous message: Hank Nussbacher: "[nsp] 30kpps?"
Next in thread: Jason Lewis: "RE: [nsp] TCP Intercept"
Reply: Jason Lewis: "RE: [nsp] TCP Intercept"
Maybe reply: Nick: "[nsp] TCP Intercept"
Reply: Jason Lewis: "RE: [nsp] TCP Intercept"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

We are planning to implement TCP intercept in our router to prevent DOS
attacks on some of our servers. Looking at the options that can be used eg.
intercept mode, drop mode, watch timers, finrst-timeout, aggressive
thresholds, etc - are there any recommended values to use, any formula or
'it will be right if we use default values'. Anything to watch out for or
any other advice?

Thanks in advance.

-nick

Next message: Jason Lewis: "RE: [nsp] TCP Intercept"
Previous message: Hank Nussbacher: "[nsp] 30kpps?"
Next in thread: Jason Lewis: "RE: [nsp] TCP Intercept"
Reply: Jason Lewis: "RE: [nsp] TCP Intercept"
Maybe reply: Nick: "[nsp] TCP Intercept"
Reply: Jason Lewis: "RE: [nsp] TCP Intercept"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:50 EDT