论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2010-06-21 21:51 |只看该作者 |倒序浏览

外网遭到攻击，内网还能连进去

出现大量

Limiting open port RST response from 3617 to 200 packets/sec
Limiting open port RST response from 3735 to 200 packets/sec
Limiting open port RST response from 3825 to 200 packets/sec
Limiting open port RST response from 3806 to 200 packets/sec
Limiting open port RST response from 3505 to 200 packets/sec
Limiting open port RST response from 1985 to 200 packets/sec
Limiting open port RST response from 2864 to 200 packets/sec
Limiting open port RST response from 2813 to 200 packets/sec
Limiting open port RST response from 3475 to 200 packets/sec
Limiting open port RST response from 3287 to 200 packets/sec
Limiting open port RST response from 2971 to 200 packets/sec
Limiting open port RST response from 1678 to 200 packets/sec
Limiting open port RST response from 1609 to 200 packets/sec
Limiting open port RST response from 1230 to 200 packets/sec
Limiting open port RST response from 1067 to 200 packets/sec

系统负载不高。但是一会儿内网网络也失去响应。

之前是有做
net.inet.tcp.blackhole=2
net.inet.udp.blackhole=1

可是还是有问题。请问有什么办法让网络不失去响应。

文库|博客

yhlovemj

丰衣足食

论坛徽章:: 0

2楼 [报告]

发表于 2010-06-21 23:36 |只看该作者

开 pf 防火墙，最近怎么了，我的服务器也才被攻击过

实战分享：从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线！ | 新一代分布式关系型数据库RadonDB知多少？

canjie

家境小康

论坛徽章:: 0

3楼 [报告]

发表于 2010-06-22 00:17 |只看该作者

有开pf防火墙啊。pf需要设置啥规则？

实战分享：从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线！ | 新一代分布式关系型数据库RadonDB知多少？

canjie

家境小康

论坛徽章:: 0

4楼 [报告]

发表于 2010-06-22 00:28 |只看该作者

本帖最后由 canjie 于 2010-06-22 00:41 编辑

是不是
set limit states 2000000
set limit frags 2000000
set limit src-nodes 500000
set limit tables 100000
set limit table-entries 100000

红色的部分我设置太大了还是太低了？