We'll need to know what kind of attack it is to help you. From outside
directing at your IPs, DNS amplification, incoming SPAM, outgoing SPAM, etc.?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: Joe Miller
It looks like it is incomimg.
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On Behalf
Of Clay Stewart
Sent: Thursday, November 21, 2013 10:23 AM
To: WISPA General List
Subject: Re: [WISPA] DDOS attack
Joe, if it is overwhelming your router, run the sniffer (may
Joe, if it is overwhelming your router, run the sniffer (may take a few
minutes to start and then stop) and then you will have to disconnect (turn
off WAN) in order to copy file out to computer.
I have been through a bunch of these over last couple months, including a
couple this last weekend.
I'm getting slammed with emails from my provider regarding a possible DDOS
attacks to several of my IP's.
I'm using Mikrotik and just trying to figure out how to stop this.
Any help would be appreciated.
Joe Miller
www.dslbyair.com
228-831-8881
Oops, you need an ATS
Generac and others makes one about $2500 total we have not found anything
smaller that is a complete automatic unit.
Scott Carullo
Technical Operations
855-FLSPEED x102
From: Mike Lyon mike.l...@gmail.com
Sent: Wednesday, November
Gary, this may be a dumb question - if so don't hesitate to say so. :)
Where I live (right in the middle of the US and a couple hundred miles
north), there is considerable wind, probably 300 days out of the year.
On the days when it's calm, the sun is usually shining brightly in the
summer
The attacks we are seeing are DNS amplification or open web proxy ports. If
you have web proxy enabled on your mikrotiks disable that. Same goes for any
unneeded services/packages. Eric Rogers posted a DDOS script awhile back
which works well.
Justin
--
Justin Wilson j...@mtin.net
MTCNA CCNA
What does torch or a packet sniff show?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: Joe Miller joe.mil...@dslbyair.com
To: WISPA General List wireless@wispa.org
Sent: Thursday, November 21, 2013 10:28:54 AM
Subject: Re:
Joe, run the sniffer under tools for 30sec to a minute, and dump file to
desktop... open with WireShark to determine for sure of it is mail spam or
port attack.
Are your routers overloading to 100%, or bandwidth is being overloaded?
On Thu, Nov 21, 2013 at 11:06 AM, Joe Miller
Finally! Someone who understands what I am talking about.
We have been treating our entire WISP network as a giant hotspot since 2005
or 2006.
Doing it this way relieves us of having to bill people. They pay with their
card in advance after their interval has expired.
Depending on the location it
10 matches
Mail list logo