Possible SYN flooding on port 830

CESNET / netopeer2

NETCONF toolset

BSD 3-Clause "New" or "Revised" License

291 stars 186 forks source link

Possible SYN flooding on port 830 #1467

Open sivawabtec opened 10 months ago

sivawabtec commented 10 months ago

Hello,

I see this error in dmesg once in a while. What does this signify? Is it concerning? appreciate the help! "TCP: request_sock_TCPv6: Possible SYN flooding on port 830. Sending cookies. Check SNMP counters"

We use the below versions: netopeer2: v1.1.39 libyang: v1.0.184 sysrepo: v1.4.70 libnetconf2: v1.1.26

michalvasko commented 10 months ago

Not sure what causes this but I have found it mentioned only together with some other major problems so if your only concern are the messages themselves, it is probably okay. Also, you should not be using sysrepo v1.x anymore and I am not able to provide any more support.

jktjkt commented 10 months ago

It's a message from your kernel that's telling you that there's a high rate of incoming TCP connections to your NETCONF server. An example of how to troubleshoot this is on RedHat's portal.