No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


AR Router Troubleshooting Guide

This Product Documentation provides guidance for maintaining AR Enterprise Router, covering common information collection and fault diagnostic commands, typical fault troubleshooting guide, and troubleshooting.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
SYN Flood Attacks Are Detected on a Network

SYN Flood Attacks Are Detected on a Network

Due to resource restriction the TCP/IP protocol stack permits only a certain number of TCP connections.

To initiate a SYN Flood attack, an attacker sends a SYN packet with a forged or nonexistent source address to connect to a server. After receiving the SYN packet, the server replies with a SYN-ACK packet. The receiver of the SYN-ACK packet does not exist, so a half-connection is generated. If the attacker sends a large number of these packets, many half-connections are generated on the attacked host. The resources on the attacked host are exhausted and users cannot access the host until the half-connections time out.

Updated: 2019-05-10

Document ID: EDOC1000079719

Views: 454331

Downloads: 4316

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next