PeerGuardian 35
2.DoS 攻撃に対して TCP/IP スタックを強化する
SynAttackProtectの設定
http://journal.mycom.co.jp/column/winxp/158/index.html
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters ]
"DefaultTTL"=dword:00000040
"EnablePMTUDiscovery"=dword:00000001
"SackOpts"=dword:00000001
"Tcp1323Opts"=dword:00000003
"TcpWindowSize"=dword:0007fff8
"GlobalMaxTcpWindowSize"=dword:0007fff8
"TcpMaxDupAcks"=dword:00000003
"SynAttackProtect"=dword:00000002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AFD\Parameters]
"DefaultReceiveWindow"=dword:0007fff8
"DefaultSendWindow"=dword:0001fffe
"DisableAddressSharing"=dword:00000001
"LargeBufferSize"=dword:00008000
"MediumBufferSize"=dword:00001000
"SmallBufferSize"=dword:00000200
"TransmitWorker"=dword:00000020
"MaxFastTransmit"=dword:0001fffe
"MaxFastCopyTransmit"=dword:00000100
↑をメモ帳とかにコピペしてSynAttackProtect.regとか適当な名前つけて保存
ダブルクリックしてレジストリに追加、OS再起動
SynAttackProtectの設定
http://journal.mycom.co.jp/column/winxp/158/index.html
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters ]
"DefaultTTL"=dword:00000040
"EnablePMTUDiscovery"=dword:00000001
"SackOpts"=dword:00000001
"Tcp1323Opts"=dword:00000003
"TcpWindowSize"=dword:0007fff8
"GlobalMaxTcpWindowSize"=dword:0007fff8
"TcpMaxDupAcks"=dword:00000003
"SynAttackProtect"=dword:00000002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AFD\Parameters]
"DefaultReceiveWindow"=dword:0007fff8
"DefaultSendWindow"=dword:0001fffe
"DisableAddressSharing"=dword:00000001
"LargeBufferSize"=dword:00008000
"MediumBufferSize"=dword:00001000
"SmallBufferSize"=dword:00000200
"TransmitWorker"=dword:00000020
"MaxFastTransmit"=dword:0001fffe
"MaxFastCopyTransmit"=dword:00000100
↑をメモ帳とかにコピペしてSynAttackProtect.regとか適当な名前つけて保存
ダブルクリックしてレジストリに追加、OS再起動
|
|
|