Logo ADS-Training Home   All Libraries and Lists   Site Management   Create (reserved)   Site Help   
Icon
ADS-Training InfoCenter
Knowledge Base and Tips: How To: Harden the TCP/IP Stack Against Denial...
   
New New Item
|
Edit Edit Item
|
Delete Delete Item
|
Alert Me
|
Go Back to List
Title:
How To: Harden the TCP/IP Stack Against Denial of Service Attacks in Windows 2000...
Body:
This article was published by Microsoft Corporation / January 2004.
 
Objectives: 
  • Harden your server's TCP/IP stack
  • Protect your servers from Denial of Service and other network based attacks
  • Enable SYN flood protection when an attack is detected
    Set the threshold values that are used to determine what constitutes an attack

Click here to access document on Microsoft Web site:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/secmod/html/secmod112.asp

Applies To
Microsoft® Windows® 2000 Server and Windows 2000 Advanced Server operating systems

For more details about the TCP/IP network settings that the registry for Windows 2000 controls, see the white paper "Microsoft Windows 2000 TCP/IP Implementation Details," at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/itsolutions/network/deploy/depovg/tcpip2k.asp

Note:  These settings modify the way TCP/IP works on your server. The characteristics of your Web server will determine the best threshold to trigger denial of service countermeasures. Some values may be too restrictive for your client's connection. Test this module's recommendations before your deploy them on a production server.
KB Article by ID Number:
315669
Directory Services Keywords:
Security W2000SECCONF
General Services Keywords:
SECURITY
Technologies Keywords:
Networking Keywords:
TCP/IP W2000STACK
Expires:
Attachments:
 
 
Created at 2/15/2004 9:23 AM by Jean-François APREA
Last modified at 2/15/2004 9:23 AM by Jean-François APREA