The nfsynproxy tool is used to detect parameters for the SYNPROXY module. I'd find it useful to have this tool compiled by default or via a new USE flag. See: http://rhelblog.redhat.com/2014/04/11/mitigate-tcp-syn-flood-attacks-with-red-hat-enterprise-linux-7-beta/ Reproducible: Always
added behind the USE=pcap flag too: http://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ace76fb957e46e87b595cb3811d16e41d5b5e6fb