Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

nftables meets SYNPROXY?
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
seVes
n00b
n00b


Joined: 06 Jan 2011
Posts: 54
Location: Germany
PostPosted: Fri Jan 15, 2016 8:03 pm    Post subject: nftables meets SYNPROXY? Reply with quote
Hey!

I switched my server to using nftables and converted nearly all iptables-rules into nftables.
At least, the protection using SYNPROXY is missing.

Is nftables able to use SYNPROXY or not?

If yes, how?
_________________
Alex / seVes
Back to top
View user's profile Send private message
massimo
Veteran
Veteran


Joined: 22 Jun 2003
Posts: 1226
PostPosted: Sat Jan 16, 2016 7:22 am    Post subject: Reply with quote
http://wiki.nftables.org/wiki-nftables/index.php/Supported_features_compared_to_xtables
_________________
Hello 911? How are you?
Back to top
View user's profile Send private message
seVes
n00b
n00b


Joined: 06 Jan 2011
Posts: 54
Location: Germany
PostPosted: Sat Jan 16, 2016 6:55 pm    Post subject: Reply with quote
Thanks massimo!

I already found that page, but that doesn't help me that much.

Can you give me an example-line for the nftables?

iptables example:
Code:
iptables -A INPUT -p tcp -m tcp --dport 22 -m state --state INVALID,UNTRACKED -j SYNPROXY --sack-perm --timestamp --wscale 7 --mss 1460

_________________
Alex / seVes
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2021 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy