[Info-vax] Harden TCPIP Srv OVMS again SYN FLOOD attacks
Johnny Billquist
bqt at softjar.se
Tue Aug 14 16:45:05 EDT 2018
On 2018-08-14 22:31, Jan-Erik Söderholm wrote:
> Den 2018-08-14 kl. 22:14, skrev Johnny Billquist:
>> On 2018-08-14 17:42, Stephen Hoffman wrote:
>>> Either in addition to or in place of increasing the sockets — though
>>> pragmatically, there probably aren't all that many good reasons not
>>> to run with 64K sockets configured in this era — I'd suggest having a
>>> look at the tcp_keepinit setting, and specifically at reducing that
>>> value.
>>
>> Why the 64K limit? Why not bump it to a few million in that case?
>>
>> Johnny
>>
>
> You cannot (or should not) set it higher according to the docs
> or unexpected "things" might happen. It is a built-in limit.
>
> Or did you ask why that limit is where it is? Don't know...
Well, I guess the question was vague, but your explanation at least
clarifies that there is some kind of limit at 64K in the system here.
I could be interesting to learn why there is a limit there, but that
would really just be to feed my curiosity.
Johnny
--
Johnny Billquist || "I'm on a bus
|| on a psychedelic trip
email: bqt at softjar.se || Reading murder books
pdp is alive! || tryin' to stay hip" - B. Idol
More information about the Info-vax
mailing list