Ubuntu
linux package

  1. Bug #346378
  2. Comment #0

Comment 0 for bug 346378

Revision history for this message
Andy Rogers (andy-rogers) wrote : net.ipv4.tcp_syncookies is a unknown key

Binary package hint: procps

Since net.ipv4.tcp_syncookies was enabled as default in procps 3.2.7-11ubuntu1 18/03/2009 i have been getting a message of which procps is restarted

 * Setting kernel variables (/etc/sysctl.conf)... [ OK ]
 * Setting kernel variables (/etc/sysctl.d/10-console-messages.conf)... [ OK ]
 * Setting kernel variables (/etc/sysctl.d/10-network-security.conf)...
 error: "net.ipv4.tcp_syncookies" is an unknown key
                                                                         [fail]

I am on the latest kernel of 2.6.28-11.36

This is the contents of my 10-network-security.conf

# prevent some spoofing attacks.
net.ipv4.conf.default.rp_filter=1
net.ipv4.conf.all.rp_filter=1

# Turn on SYN-flood protections. Starting with 2.6.26, there is no loss
# of TCP functionality/features under normal conditions. When flood
# protections kick in under high unanswered-SYN load, the system
# should remain more stable, with a trade off of some loss of TCP
# functionality/features (e.g. TCP Window scaling).
net.ipv4.tcp_syncookies=1

This is also a possible occurance from enabling it by default when it was originally came from bug 50791 https://launchpad.net/bugs/57091 .