[cod] Query limiting...
Ryan C. Gordon
icculus at icculus.org
Mon Oct 24 12:15:12 EDT 2011
> Is it possible to not reflect this kind of attacks at the application
> level too (by rate limiting) or can this be done only at
> firewall/networking level?
SYN packets don't make it to the application level (we don't even use a
TCP socket, just UDP)...you'd have to block that at the firewall.
(The limiting patch, fwiw, is to make sure your servers aren't used to
DDoS someone else...I can't really help you if someone's attacking
_you_, unfortunately.)
--ryan.
More information about the cod
mailing list