I want my Apache 2 web Server to have a Denial of Service due to an TCP Syn Flood Attack.
I used Kali Linux in Combination with the MSF to take my web server down. But my web server doesn't seem to care about that.
I am using an Apache 2 on Ubuntu 14.04 with the IP 192.168.1.254 and my attacker is a Kali Linux with the IP 192.168.1.1.
I tracked the network traffic with Wireshark and everything is fine the syn packets arrive at my web server (tons of packages).
My Network is completely virtual and exists only on my ESX Server. Could that be the problem ?
I also disabled the syn cookies on my Ubuntu machine.
Why won't my web server die? Even the response time is not affected.
Your host operating system is probably ignoring the SYN flood after a while, non-malicious connections are still completed in a timely manner and passed down to the HTTP server.