PF rdr rule do not work when got synflood

Hi,

I'm running FreeBSD as firewall,

rdr rule is not working when system having a ddos attack (tcp ack flood on port 80)

all my limit do not reach.

This is my pf.conf
Code:
set limit { states 100000000, frags 2000000, src-nodes 20000000 }
set limit table-entries 10000000

rdr pass on $ext_if proto tcp from any to <proxy> port 80 -> <proxysv> port 9002 sticky-address


Thank you.
 
Back
Top