:


-(3434)-(809)-(7483)-(1457) -(14632) -(1363)-(913)-(1438)-(451)-(1065)-(47672) -(912)-(14524) -(4268)-(17799)-(1338)-(13644)-(11121)-(55)-(373)-(8427)-(374)-(1642)-(23702)-(16968)-(1700)-(12668)-(24684)-(15423)-(506)-(11852) -(3308)-(5571)-(1312)-(7869)-(5454)-(1369)-(2801)-(97182)-(8706)-(18388)-(3217)-(10668) -(299)-(6455)-(42831)-(4793)-(5050)-(2929)-(1568)-(3942)-(17015)-(26596)-(22929)-(12095)-(9961)-(8441)-(4623)-(12629)-(1492) -(1748)

ܭ ͭέ έέ߭





ŭͭέέ

, , OSI. TCP/IP , OSI. , , , .

, , . , .

( ) .

. , (stateful) . , IP-, , , . , . .

. MTU IP- , , . , , ( IP- ). , - . , .

SYN ACK. SYN ACK TCP. SYN-flooding (. SYN-flooding), . TCP- SYN, ACK , ( ). , SYN-flooding , , .



2. TCP- SYNDefender Gateway.

 

. , SYNDefender Gateway FireWall-1 Check Point . , Z A . 2. SYN Z ( 1), A ( 2). A SYN/ACK Z, ( 3). Z, , Z ACK A ( 4). A, , SYN-flooding .

, Z A. , Z ACK A, ( 5a). A ACK. A Z. ACK - , A RST, ( 5).

3. TCP- SYNDefender Relay.

SYNDefender Relay Check Point FireWall-1 . SYN A, Z. 3. ACK Z A ( 3). , Sequent number ( ) Acknowledgement number ( ) TCP, A Z, .





: 2014-01-03; : 539; ?


! ? |



:


:

:
studopedia.su - (2013 - 2020) . !
: 0.002 .