Distributed Denial of Service Attacks – TCP Syn Flooding Attack Mitigation

Snehal Sathwara, Chandresh Parekh


In this new era of digital science, networks and their capacities are significantly growing and increasing their market values. Attackers are gradually improving their skill sets by developing powerful tools to stay ahead in the world of black hat. Distributed Denial of Service Attacks (DDoS) are most dangerous attacks with the internet services and networks which is carried out in various forms such as server crashing, router crashing, slow performance of the CPU etc. Attackers implement various techniques to launch DDoS attacks on target computers or networks. In this paper, we discussed TCP syn flooding DDoS attack and its mitigation techniques to reduce attacks effect. We present a mitigation method of the TCP syn flood DDoS attacks on the Apache server by capturing attackers IP addresses and set the TCP – RST over the continues flow of SYN+ACK. It will reduce the effect of syn flooding with customised time duration. Through this method legitimate users can maintain their connection accessibility.


DDoS Attacks, TCP syn flooding, SYN+ACK, RST, Cyber Security, IP tables, Mitigation Techniques

Full Text:


DOI: https://doi.org/10.26483/ijarcs.v8i5.3391


  • There are currently no refbacks.

Copyright (c) 2017 International Journal of Advanced Research in Computer Science