This is the rule in iptables for stop sync_flood attacks:
iptables -A INPUT -m state --state NEW -p tcp -m tcp --syn \
-m recent --name synflood --set
iptables -A INPUT -m state --state NEW -p tcp -m tcp --syn \
-m recent --name synflood --update --seconds 1 --hitcount 60 -j DROP
Error:
iptables: Unknown error 4294967295
I don't know what exactly to do, this ocurrs when insert the last rule "-m recent –name synflood –update –seconds 1 –hitcount 60 -j DROP"
Here the kernel version
2.6.18-274.12.1.el5PAE
Best Answer
A quick search on Google for your error message lead to CentOS bug 3632, which says:
You're setting
hitcount
to60
, so this sounds like it's probably the root of your problem.