Displaying syn cookie information – Brocade Communications Systems ServerIron ADX 12.4.00a User Manual

ServerIron ADX Security Guide

123

53-1002440-03

Configuring Syn-Proxy

5

Syntax: show server traffic

Displaying SYN Cookie Information

This show server syn-cookie command displays information about the SYN AKS that are sent and
received.

Syntax: show server syn-cookie

TABLE 10

Field Descriptions for show L4-traffic

Field

Description

last conn rate

Rate of TCP traffic per second. This includes all TCP traffic, including TCP SYN DoS
attacks

max conn rate

Peak rate of TCP traffic (per second) encountered on this device.

last TCP attack rate

Rate of TCP Dos attacks per second. This rate is delayed by 1 to 2 minutes.

max TCP attack rate

Peak rate of TCP DoS attacks (per second) encountered on this device. This rate is
delayed by 1 to 2 minutes.

ServerIronADX#show server syn-cookie

CPU SYNs processed : 4 AXP SYNs processed : 92853225

CPU SYN-ACKs sent : 4 AXP SYN-ACK sent : 92853225

CPU Valid ACKs rcvd : 92951930 AXP Valid ACKS rcvd : 253002850

Invalid ACKs rcvd : 1741885

ACL passed : 0 ACL failed : 0

Frags allowed : 0 Frags dropped : 73009

ACK without data dro : 0

Invalid vport : 0