LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page Firewall being overloaded by linux box - any ideas?
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 12-21-2005, 10:19 AM   #1
wdawson
LQ Newbie
 
Registered: Dec 2005
Posts: 1

Rep: Reputation: 0
Firewall being overloaded by linux box - any ideas?

First let me preface by saying I am still new to linux, but I am learning so pardon my ignorance if I appear to be asking simple questions.

quick background:

My company has a linux box (redhat) acting as a front end mail server, it accepts mail for our domain passes it through spamassassin then onto our exchange server.

The linux box sits in the dmx zone of our firewall.

Our firewall is now reporting the following:

The cache is full; 20460 open connections; some will be dropped - Source:xxx.xxx.242.253 (ip partial removed to prevent any mal intent), 49941, DMZ - Destination:220.140.143.154, 80, WAN -

The firewall proceeds to lock up until this "attack" subsides.

Has anyone ever experianced anytrhing like this before? any help would be appreciated.
 
Old 12-22-2005, 07:22 PM   #2
WindowBreaker
Member
 
Registered: Oct 2005
Distribution: Slackware
Posts: 228

Rep: Reputation: 40
wdawson:
Run this command:
cat /proc/sys/net/ipv4/ip_conntrack_max

Then double it like so:
echo 64535 > /proc/sys/net/ipv4/ip_conntrack_max

Of course, the number you use (64535 in my example) may be different.

If it's not this parameter, look around for other relevant parameters and do some googling.

Hope that helps. Keep us posted.
 
Old 12-22-2005, 08:14 PM   #3
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
could it be a SYN flood?? if so, try a:
Code:
echo "1" > /proc/sys/net/ipv4/tcp_syncookies
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Small linux box as a wireless router/home network ideas enine Linux - Wireless Networking 16 05-09-2006 09:25 PM
Linux Box w/ 2 NICs and passive firewall? rruss Linux - Networking 1 04-14-2005 08:15 AM
I need some ideas on build my first linux box elite_syntax Linux - Hardware 4 01-26-2003 06:08 AM
Ideas for a Linux Box mp- Linux - General 2 01-12-2003 02:38 PM
backing up a linux box.. any ideas? Chypmunk Linux - General 5 04-07-2002 11:25 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:17 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration