Question

DoS defense: modified TCP connection handling: What to do if the table is full

a) Ignore incoming connections
b) Queue incoming connections
c) Drop existing connections
d) Limit connection rate

Answer 1

In DoS defense, when the table is full, there are several options to consider: ignore incoming connections, queue incoming connections, drop existing connections, or limit connection rate.

Step-by-step explanation:

In DoS defense, when the table is full, there are several options to consider:

1. Ignore incoming connections: This means not accepting any new incoming connections when the table is full. This can help prevent further strain on the system, but it may result in legitimate connections being dropped.
2. Queue incoming connections: This involves storing incoming connections in a queue until space becomes available in the table. This can help to ensure that all connections are eventually processed, but there may be delays for queued connections.
3. Drop existing connections: This option involves dropping some of the existing connections in order to make room for new connections. The connections to drop can be selected based on various criteria, such as their age or the resources they are using.
4. Limit connection rate: Another approach is to limit the rate at which new connections are accepted. This can help to prevent the table from filling up too quickly, but it may also result in legitimate connections being delayed or rejected.