Re: Protecting from SYN floods and other asshole people.

lvs-users

Re: Protecting from SYN floods and other asshole people.

To:	"Matthew S. Crocker" <matthew@xxxxxxxxxxx>
Subject:	Re: Protecting from SYN floods and other asshole people.
Cc:	"lvs-users@xxxxxxxxxxxxxxxxxxxxxx" <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
From:	Julian Anastasov <ja@xxxxxx>
Date:	Fri, 31 Aug 2001 22:53:42 +0000 (GMT)

        Hello,

On Fri, 31 Aug 2001, Matthew S. Crocker wrote:

> tcpserver is rejecting connections (I think).   Can I put an iptables
> entry on the director to block the offending CLass C?  Or, does LVS happen
> before the iptable stuff?

        LVS is designed to work after any kind of firewall rules. So,
you can put your ipchains/iptables rules safely. If you are using iptables
put them on LOCAL_IN, not on FORWARD. The LVS packets do not go through
FORWARD.

> -Matt


Regards

--
Julian Anastasov <ja@xxxxxx>

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
lvs Web Page?, Cpunk Protecting from SYN floods and other asshole people., Matthew S. Crocker Re: Protecting from SYN floods and other asshole people., Julian Anastasov <= Re: Protecting from SYN floods and other asshole people., Joseph Mack Re: lvs Web Page?, Joseph Mack

Previous by Date:	RE: Protecting from SYN floods and other asshole people., Peter Mueller
Next by Date:	unsubscribe, Chun, Myung Z (N-Payroll Plus)
Previous by Thread:	Protecting from SYN floods and other asshole people., Matthew S. Crocker
Next by Thread:	Re: Protecting from SYN floods and other asshole people., Joseph Mack
Indexes:	[Date] [Thread] [Top] [All Lists]