How do you know if you are being DDOSED ?

[Bingbing10]

so these last few weeks i have just been experiencing really slow internet ( i am meant to be getting 150mbps and i am getting around 20mbps) and my internet will go from being around 20mbps to 500kbps then back up again ? I tried sorting this out with the ISP but they found no issues from my end, so i thought am i being DDosed , and how can i tell if i am? Finally how would i stop it ?

[Tro]

People won't just DDOS you for no reason...

[Archangel1994]

DDos usually means no internet whatsoever or like 0.000001 mbit. If it still goes up then it's not a DDos. Could be one of 4 things:

 

- Router/switch is acting up

- ISP is having troubles

- Ethernet port/WIFI adapter is acting up/damaged/degenerated

- Cables damaged/degenerated

[Bingbing10]

People won't just DDOS you for no reason...

well some guys got mega mad at me a few weeks ago in BF4 and and said he was going to - i know probs just talk but i was just thinking

[Altecice]

I tried sorting this out with the ISP but they found no issues from my end

 

Yep you're not being DDOS'd. your ISP would be able to see all the traffic. Did you hit your data cap for this month or somthing?

[Tro]

well some guys got mega mad at me a few weeks ago in BF4 and and said he was going to - i know probs just talk but i was just thinking

And how do you think he got your IP?

[Bingbing10]

Yep you're not being DDOS'd. your ISP would be able to see all the traffic. Did you hit your data cap for this month or somthing?

im on unlimited internet 

[Bingbing10]

And how do you think he got your IP?

i do not have a clue   im more into the building pc side of computers not so much other sides 

[Tro]

i do not have a clue   im more into the building pc side of computers not so much other sides 

Well i don't think he could've gotten your IP in any way.

[Sharif]

Same thing has been happening with my ISP

but i think its the ISP as the same problem is happening through out everyone in this building (Same ISP different subscription) 

[aidenrelkoff]

your internet will just crap it self, like 1900ms ping and .2 mbps download with 0 upload

[Blade of Grass]

so these last few weeks i have just been experiencing really slow internet ( i am meant to be getting 150mbps and i am getting around 20mbps) and my internet will go from being around 20mbps to 500kbps then back up again ? I tried sorting this out with the ISP but they found no issues from my end, so i thought am i being DDosed , and how can i tell if i am? Finally how would i stop it ?

Have you tried restarting your modem/router/networking gear? Other than that, the only thing you can really do is contact your ISP and see what's up. They can see all the things like line connect rate and traffic going to your home, and they likely have specific equipment that they can use to inspect the traffic for DoS traffic. 

 

How do you connect your computer to the network, WiFi , Ethernet or powerline etc?

[AMICLG]

It's almost NEVER a DDoS but rather a Layer 7 DoS that's flooding the NAT tables etc. unless the person has a pretty big botnet and you don't just get D/DoS'd for no reason, it usually happens when you piss off the wrong person/s on the internet. What's your router as that could simply be the problem.

[Darren]

so these last few weeks i have just been experiencing really slow internet ( i am meant to be getting 150mbps and i am getting around 20mbps) and my internet will go from being around 20mbps to 500kbps then back up again ? I tried sorting this out with the ISP but they found no issues from my end, so i thought am i being DDosed , and how can i tell if i am? Finally how would i stop it ?

 

If you've become subject to a significant DDoS, your ISP will take action. A popular mitigation strategy that your ISP will take is just to black-hole your IP, so no one can find a route to you.

 

This does, however, come with the side effect that you can not route past your ISP. Your internet connection will seem online, but you won't get anywhere.

[Blade of Grass]

It's almost NEVER a DDoS but rather a Layer 7 DoS that's flooding the NAT tables etc. unless the person has a pretty big botnet and you don't just get D/DoS'd for no reason, it usually happens when you piss off the wrong person/s on the internet. What's your router as that could simply be the problem.

A Layer 7 attack would not fill up the NAT tables.

Whenever a packet would come in from the internet, the router would go "Do I have a corresponding session?" and then does a lookup in its NAT table. If the answer is yes, the router than passes along the packet to the corresponding host. If the answer is no (which is what would happen in most layer 7 attacks as nothing on the local network requested it), the router drops the packets.

layer 7 attacks are extremely efficient at attacking servers, as they have to be listening for whatever services they host, and they always respond (like with Apache).