Solaris 10 with Weblogic : High TCP connect timeout rate

Our Solaris 10 server running Weblogic are getting thousands of messages below:
Intermittently the OS would freeze:  no core/crash dumps found.

Does this require a WL or Solaris patch or certain TCP tuning?  


Feb  5 06:17:27 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  5 12:13:03 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  6 10:28:25 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  6 11:56:35 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  7 21:57:33 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  7 22:06:34 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  8 04:24:08 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  9 21:28:25 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Feb  9 22:12:10 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
Jan 27 10:44:37 VGUV30 ip: [ID 995438 kern.warning] WARNING: High TCP connect timeout rate! System (port 8080) may be under a SYN flood attack!
sunhuxAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

sunhuxAuthor Commented:
I don't have access to Oracle portal to download patch 119999 so guess I have to tune the parameter
  https://download.oracle.com/sunalerts/1000654.1.html
sunhuxAuthor Commented:
showrev -p   indicates we already have 119999-03 patch installed.

So had to look to other options to fix this:
do provide specific commands (ndd -set   ...)
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
Seems like whatever is listening on port 8080 is either slow or dead.

Take a look at your connections + make sure you have an 8080 listener + then load test whatever this listener might be to determine the problem.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Weblogic

From novice to tech pro — start learning today.