simply a firewall will not solve your problem
I recommend you to give a deep reading to this excellent blog entry:
http://www.informedbanking
Looks like increasing the entropy will help, but definitely there is a bug in the TCP kernel driver.
it IS however related to attacks, but simply blocking the traffic will not help, because it can arrive from any ip or mixed with valid traffic.
maybe some of the advanced kernel variables exposed there will work, and using a rate limiter would also help.
hth
Main Topics
Browse All Topics





by: omarfaridPosted on 2009-10-30 at 22:43:13ID: 25708630
You should have a firewall that protects your system otherwise you should use iptables to restrict access to your system
s/iptables /iptables- tutorial.h tml
http://rlworkman.net/howto