gitweb.dragonflybsd.org Git - freebsd.git/commit

author	Kristof Provost <kp@FreeBSD.org>
	Sat, 31 Dec 2022 18:26:24 +0000 (19:26 +0100)
committer	Kristof Provost <kp@FreeBSD.org>
	Fri, 13 Jan 2023 22:14:25 +0000 (23:14 +0100)
commit	933be8d74b0471c8578a6ec965299383bc65138b
tree	ab0282114698faa9528bec44673c05683a61b181	tree \| snapshot
parent	dc698b2cd59ebc08b05a261dbba8ee5707450d28	commit \| diff

pf: default syncookies to adaptive mode

The cost of enabling syncookies in adaptive mode is very low (basically
a single atomic add when we create a new half-open state), and the
payoff when under SYN flood is huge.

So, enable adaptive mode by default.

Suggested by: Eirik Øverby

sys/netpfil/pf/pf_ioctl.c		diff \| blob \| blame \| history
sys/netpfil/pf/pf_syncookies.c		diff \| blob \| blame \| history

FreeBSD Project Source

RSS Atom