Tôi có một vấn đề lạ net.ipv4.tcp_syncookies được đặt thành không.
nhưng tôi vẫn có cảnh báo sau trong / var / log / message TCP: Possible SYN flooding on port 80. Dropping request.
sysctl -a | grep cooki
net.ipv4.tcp_syncookies = 0
net.ipv4.tcp_cookie_size = 0
=========================================
net.ipv4.tcp_max_syn_backlog=500000
=========================================
iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
=========================================
Centos 6.2 64bit
Linux 3.0.0+ #1 SMP Fri Oct 26 07:55:47 EEST 2012 x86_64 x86_64 x86_64 GNU/Linux
/ var / log / tin nhắn
net_ratelimit: 6168 callbacks suppressed
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
TCP: Possible SYN flooding on port 80. Dropping request.
Bạn có thể cung cấp thêm thông tin từ các bảng mangle và nat? iptables -nvL -t nat; iptables -nvL -t mangle
—
taho