摘要 |
PURPOSE: A device and a method for blocking a TCP(transmission control protocol) SYN(synchronous idle) flooding attack on a network are provided to determines whether a TCP SYN flooding attack exists or not, effectively block attack traffic, and relay a client and a server after normally connecting to the server. CONSTITUTION: A device for blocking a TCP SYN flooding attack on a network is comprised as follows: a first interface(210) for TCP connection with a client(100), a second interface(230) for TCP connection with a server(300), a processor(220) connected to the first interface and the second interface. The processor determines whether a TCP SYN flooding attack exists or not by transmitting a SYN packet which applied a timestamp option with a client if the SYN packet for connection setting of a server with a client is received from the client. |