Forum Discussion

Cirrostratus

Apr 29, 2016

mptcp-mobile-optimized and Hardware SYN Cookie Protection

Does anyone know why the TCP protocol profile mptcp-mobile-optimized ships with Hardware SYN Cookie Protection disabled? It is still enabled on tcp-mobile-optimized. Here is a copy of my two profi...

Cirrus

May 03, 2016

Hello,

This is a compatibility issue at the specification level as the M-TCP stack is not designed to support syn-cookie protection. I think that if you activate syn-cookie protection on a m-tcp enabled system, you expose yourself to many false positives and TCP retransmission.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

mptcp-mobile-optimized and Hardware SYN Cookie Protection

Recent Discussions

APM with EntraID as idP / request signed

Should config via cli rather than gui?

Background Tasks

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

L7 DoS Protection with NGINX App Protect DoS

Beyond REST: Protecting GraphQL

Cookie-based DDoS protection

Hardware Security Modules

Managing NGINX App Protect WAF for Beginners

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS