TCP RST handling in 6.0

[Lars Eggert]

On Nov 8, 2005, at 12:46, Marc Olzheim wrote:
> Being on the wrong end of a distributed tcp syn flood attack atm.  
> on the
> machine I'm mailing from, is probably enough to convince me of its  
> use.

The change we are discussing is not protecting you from SYN floods,  
it is supposed to protect you from spoofed RSTs.

Lars
--
Lars Eggert                                     NEC Network Laboratories