Professional Documents
Culture Documents
431 Finalpresenation
431 Finalpresenation
SYN Flood
Detection and Defense
● SYN Cookies: Send TCP state table information in the ACK response
to client
○ Resources are not reserved until client response
● TCP Stateful Packet Inspection: Log state of packets and TCP
connections
○ Limit and track number of half open TCP connections
● Rate Limiting: Limit number of SYN packets per second and drop any
above the limit
○ May discard valid packets