Date: Sat, 26 May 2007 04:27:49 +0300 From: "Abdullah Ibn Hamad Al-Marri" <almarrie@gmail.com> To: "Kian Mohageri" <kian.mohageri@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: alot of State failure on: 2 Message-ID: <499c70c0705251827y5297382cs46af00cae15012ed@mail.gmail.com> In-Reply-To: <fee88ee40705251813i5a24f027jd880d8b2828e4638@mail.gmail.com> References: <499c70c0705251609s6be5792bl1ca40076c69f6da3@mail.gmail.com> <fee88ee40705251813i5a24f027jd880d8b2828e4638@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 5/26/07, Kian Mohageri <kian.mohageri@gmail.com> wrote:
> On 5/25/07, Abdullah Ibn Hamad Al-Marri <almarrie@gmail.com> wrote:
> > Hello,
> >
> > My server is being flooded by a script kiddie against port 7325.
>
>
> What exactly is your question?
>
> You can decrease the verbosity of PF (read the pfctl man page) if you
> don't want to see those messages.
>
> Kian
>
My question is, why all these failure msgs and the state-mismatch?
Status: Enabled for 1 days 08:28:30 Debug: Loud
Hostid: 0x02a0ce3f
Interface Stats for fxp0 IPv4 IPv6
Bytes In 13566244426 0
Bytes Out 5093968616 0
Packets In
Passed 17739895 0
Blocked 140741343 0
Packets Out
Passed 18797493 0
Blocked 1031426 0
State Table Total Rate
current entries 113
searches 177905411 1521.7/s
inserts 2542930 21.8/s
removals 2542817 21.8/s
Counters
match 140456174 1201.4/s
bad-offset 0 0.0/s
fragment 1 0.0/s
short 0 0.0/s
normalize 0 0.0/s
memory 51776858 442.9/s
bad-timestamp 0 0.0/s
congestion 0 0.0/s
ip-option 0 0.0/s
proto-cksum 0 0.0/s
state-mismatch 1464193 12.5/s
state-insert 0 0.0/s
state-limit 0 0.0/s
src-limit 1075 0.0/s
synproxy 1889417 16.2/s
Am I doing something wrong with me rules causes the failure and the
state-mismatch?
--
Regards,
-Abdullah Ibn Hamad Al-Marri
Arab Portal
http://www.WeArab.Net/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?499c70c0705251827y5297382cs46af00cae15012ed>