#synsysctl -w net.ipv4.tcp_max_syn_backlog=2048sysctl -w net.ipv4.tcp_synack_retries=3sysctl -w net.ipv4.tcp_syncookies=1
#Syn flood#iptables -A INPUT -p tcp –syn -m limit –limit 1/s -j ACCEPT#iptables -A FORWARD -p tcp –tcp-flags SYN,ACK,FIN,RST RST -m limit –limit 1/s -j ACCEPT#ping of death#iptables -A FORWARD -p icmp –icmp-type echo-request -m limit –limit 1/s -j ACCEPT
vi/etc/sysctl.conf
http://hi.baidu.com/icelandbjork/blog/item/48721da1a1c4518246106435.html
5.12 掉包解決方法echo “965535″ > /proc/sys/net/ipv4/ip_conntrack_max
echo 180>/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_established
echo 120 > /proc/sys/net/ipv4/neigh/default/gc_stale_time
echo 1024 > /proc/sys/net/ipv4/neigh/default/gc_thresh1
echo 4096 > /proc/sys/net/ipv4/neigh/default/gc_thresh2
echo 8192 > /proc/sys/net/ipv4/neigh/default/gc_thresh3
限制同一ip連接數:iptables -I INPUT -m connlimit –connlimit-above 5 -p tcp –dport 80 -j REJECT
http://myeblog.3322.org/1184.htmlhttps://bbs.et8.net/bbs/showthread.php?t=977006
[Zend]zend_extension_manager.optimizer=/usr/local/Zend/lib/Optimizer-3.3.3zend_extension_manager.optimizer_ts=/usr/local/Zend/lib/Optimizer_TS-3.3.3zend_optimizer.version=3.3.3zend_extension=/usr/local/Zend/lib/ZendExtensionManager.sozend_extension_ts=/usr/local/Zend/lib/ZendExtensionManager_TS.so