Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Why bandwidth consuming ddos attack using only udp or icmp?

From: MontyRee <chulmin2 () hotmail com>
Date: Fri, 29 Feb 2008 02:52:18 +0000


Hello, list.

I have operated network in my company and recently I have experienced
some ddos attack(inbound) on my network.

It seems that the ddos attack was divided in two

first, the bandwidth consuming attack was all consist of udp or icmp using big size packet(about 1500 byte).
second tcp based attack for example http(80/tcp) is mostly creates lots of pps using small size packet(about 40 byte )

So, some network administrator said that he filtered all udp and icmp
just against the bandwidth consuming ddos attack at the border router.
(Surely some problems would be happen..dns..somethinf like that)

and I have one question.

Is it impossible or ineffective using tcp for bandwidth consuming attack in the point of attacker?
anyone who saw the bandwidth consuming attack using tcp?


Thanks in advance.

_________________________________________________________________
확 달라진 MSN 홈페이지, 지금 바로 만나보세요!
http://www.msn.co.kr
Previous By Date Next
Previous By Thread Next

Current thread: