tcptrack shows SYN_SENT connections, does that mean the SYN package reached the server?

It means the SYN was sent by the client and either didn't reach the server, the server didn't reply to it, or the server opted to reply to it without keeping track of it. The server does not need to keep track of every SYN reply it sends (and can use SYN cookies) because they may be spoofed and doing so creates a risk of denial of service attacks.

When I'm getting 'unwanted' traffic, as in traffic that has been specifically blocked by IPTABLES rules (as in being DROPped), the tcptrack shows the incoming IP address along with the SYN_SENT status (along with time of connection and data rate of 0b/sec). That listing stays there for a few seconds until it clears.

So - it's possible that the connections you're seeing are blocked for some reason. The IP addresses that come up with SYN_SENT could be locked out due to IPTABLES DROPs. You could disable IPTABLES for a bit and see if it continues. If so, make sure that the addresses being blocked are supposed to be.

How can I setup vSphere so that VLAN tags are not stripped at the vSwitch?

Can an AWS CloudFormation create a KeyPair to subsequently use when starting instances?

Linux Kernel Versioning: Debian Sid vs Ubuntu Precise

How to monitor VPN traffic with Wireshark on Windows 7?

Troubleshooting strategy for very poor iSCSI/NFS performance

Possible? OpenVPN server requiring both certificate- AND password-based login (via Tomato router firmware)

Is there a security reason not to use a wildcard cert other than manageability and exploitation if used on multiple servers?

/dev/mapper/VolGroup-lv_root has no more space left?

What are the best practices for service accounts?

How to debug memcached "SERVER HAS FAILED AND IS DISABLED UNTIL TIMED RETRY" errors?

Windows 2012: how to make power button work in every cases?

Root cause of "curl: (56) SSL read: errno -5961" errors