Re: DOS Attack?
From: Juan Carlos Jimenez Jamett (jjimenez_at_saludoriente.cl)
Date: 11/26/04
- Previous message: Sean Earp: "Re: deny access"
- In reply to: Shawn Wall: "DOS Attack?"
- Next in thread: Anthony Boynes: "Re: DOS Attack?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: security-basics@securityfocus.com Date: Fri, 26 Nov 2004 09:02:41 -0300
El mié, 24-11-2004 a las 19:22 -0700, Shawn Wall escribió:
> Hi List,
>
> I'm currently experiencing network outages due to what appears to be DOS
> attacks. I'm running a wireless ISP using a Cisco 2611 and CBAC and I have a
> /24 public address range. During the outage I can see traffic from a single
> external host sending thousands of packets to a single internal host. I
> don't have port 80 inbound open in my ACLs so I don't understand how the
> external host is even able to contact the internal host to begin with.
> Secondly, how is it possible for an attack on 1 internal host to cripple the
> rest of my network? Any feedback would be welcome. Thanks.
Hi:
Smells like spyware in your internal machine. There are too many tools
to remove spyware. try one.
-- Juan Carlos Jiménez Jamett soporte/servicios internet/red SSMO - Fono:7576207 http://www.saludoriente.cl
- Previous message: Sean Earp: "Re: deny access"
- In reply to: Shawn Wall: "DOS Attack?"
- Next in thread: Anthony Boynes: "Re: DOS Attack?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
