FYI, I have patched Suricata 6.0.9 with eBPF XDP SYNPROXY DDOS feature and can be deployed as docker container to protect servers from SYN flood DDOS attack, here is the demo Docker container fast deployment of Suricata and XDP DDOS, and here is the docker forked from Jason’s docker repo [Suricata GitHub - vincentmli/docker-suricata: A Suricata Docker image.
thanks for sharing your work with us, great work!
You are welcome, I could upstream the patches to most recent Suricata, but it appears Suricata maintainers are busy and they seems have no time to review pull request
Your last PR has been reviewed & merged 4 days ago:
So please go ahead and submit your work
Thanks Victor, I will try to port the patch to the master branch