Thu May 20, 2021 8:34 pm
Hello guys, so, I made a rule to protect against SYN Flood attacks, I put a limit of 350, I used the RAW table, it is dropping several packets, and it has public ip's known in the middle, of CCTV traffic, this is right? Or do I have to increase the limit? I am using it at the business level, I am thinking of using this rule to use it at my ISP, but I am afraid of taking down customer connections. Should I not use the RAW table, should I use the filter in the chain input?