如果我正确读取sysctl / tcp内容,当未确认的syn请求数超过net.ipv4.tcp_max_syn_backlog的值时,它会跳闸.特别：

The tcp_max_syn_backlog variable tells
your Box how many SYN requests to keep
in memory that we have yet to get the
third packet in a 3-way handshake
from. The tcp_max_syn_backlog variable
is overridden by the tcp_syncookies
variable,which needs to be turned on
for this variable to have any effect.
If the server suffers from overloads
at peak times,you may want to
increase this value a little bit.

我认为这很简单的原因是来自tcp_syncookies的文本：

The tcp_syncookies variable is used to
send out so called syncookies to hosts
when the kernels syn backlog queue for
a specific socket is overflowed. This
means that if our host is flooded with
several SYN packets from different
hosts,the syn backlog queue may
overflow,and hence this function
starts sending out cookies to see if
the SYN packets are really legit.

对我而言,它听起来真的像是具有>的syn队列一样简单. tcp_max_syn_backlog未完成的连接.