Hello,
I'd suggest You familiarize Yourself with difference between SYN-FLOOD protection and SYN-ACk-ACK proxy protection
SYN-FLOOD:
B responds with SYN/ACK segments to these addresses and then waits for responding ACK segments. Because the SYN/ACK segments are sent to nonexistent or unreachable IP addresses, they never elicit responses and eventually time out
Meaning - with SYN-FLOOD, 3-way TCP HS never completes.
SYN-ACK-ACK proxy:
At this point, the initial three-way handshake is complete
Meaning - as above.
If You are only getting inbound SYNs, without ACKs, SYN-ACK-ACK proxy is useless.
HTH
Thx
Alex