CIsco ASA 5510 SYN attack

We have recently upgraded from a PIX 515e to an ASA 5510 and am having problems with SYN attacks to 2 web servers on our DMZ which we did not have previously with the 515e.
Currently scanning attacks reads 121 and SYN attacks is saying 92

Is there anything we can do? the basic security is set.
Does anything in the ACL need changing to prevent this?


Thanks,
CTECAsked:
Who is Participating?
 
jmeggersConnect With a Mentor Sr. Network and Security EngineerCommented:
You can limit embryonic connections, which is usually what's done to combat syn attacks.  See http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00809763ea.shtml
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.