Re: DoS attack against TCP services

To: current-users%netbsd.org@localhost
Subject: Re: DoS attack against TCP services
From: mlelstv%serpens.de@localhost (Michael van Elst)
Date: Mon, 19 Jan 2015 09:24:02 +0000 (UTC)

6bone%6bone.informatik.uni-leipzig.de@localhost writes:

>>> Unfortunately, all TCP connections are now in the TIME_WAIT state.
>>>
>>> bash-4.3 # netstat -a -n | grep TIME_WAIT | wc -l
>>>      34611
>>>
>>> Is there a way to remove it without rebooting the server?
>>
>> tcpdrop(8)?

>It works. But why doesn't drop the kernel it automatically?


TCP connections in TIME_WAIT will expire after some time, usually between
10 and 60 seconds after a connection is closed. The timeout depends on
the distance of the remote machine.

-- 
-- 
                                Michael van Elst
Internet: mlelstv%serpens.de@localhost
                                "A potential Snark may lurk in every tree."

Follow-Ups:
- Re: DoS attack against TCP services
  - From: Johnny Billquist
- Re: DoS attack against TCP services
  - From: 6bone

References:
- DoS attack against TCP services
  - From: 6bone
- Re: DoS attack against TCP services
  - From: Mindaugas Rasiukevicius
- Re: DoS attack against TCP services
  - From: 6bone

Prev by Date: Re: DoS attack against TCP services
Next by Date: Re: DoS attack against TCP services
Previous by Thread: Re: DoS attack against TCP services
Next by Thread: Re: DoS attack against TCP services
Indexes:

Home | Main Index | Thread Index | Old Index