TCP backlog queue sizes must be set appropriately.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-23741	GEN003601	SV-37594r1_rule	ECSC-1	Medium

Description
To provide some mitigation to TCP Denial of Service attacks, the TCP backlog queue sizes must be set to at least 1280 or in accordance with product-specific guidelines.

STIG	Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide	2014-07-02

Details

Check Text ( None )
None

Fix Text (F-31631r1_fix)
Edit /etc/sysctl.conf and add a setting for "net.ipv4.tcp_max_syn_backlog=1280". Procedure: # sysctl -p