Multiple Dos Attacks...

[LeonidasD]

Hey All,

 

Firstly and lastly i have no idea what these are or do

 

If you need any specific information please ask

 

I truly have no idea about any of this.

 

Thanks

[Solkia]

It's "DDoS"

 

It's essentially an interuption of a persons server making it impossible to reach by its users.

[LeonidasD]

It's "DDoS"

 

It's essentially an interuption of a persons server making it impossible to reach by its users.

 

how do i "get rid of it"?

[Wano97]

It's "DDoS"

 

It's essentially an interuption of a persons server making it impossible to reach by its users.

It's not always DDoS. DoS also exists

[TheGamingBarrel]

It's "DDoS"

 

It's essentially an interuption of a persons server making it impossible to reach by its users.

There is DistrubutedDenialOFService (DDoS) And Denial of service (DoS) DDoS is when a group of computers (Normally from a botnet) all send so many packets of data it will cause the conection to crash, a DoS attack is the same but with a single compter.

[Solkia]

Download more RAM

 

I don't know, I've never dabbled with servers and I've never had my own site.

[Solkia]

It's not always DDoS. DoS also exists

 

There is DistrubutedDenialOFService (DDoS) And Denial of service (DoS) DDoS is when a group of computers (Normally from a botnet) all send so many packets of data it will cause the conection to crash, a DoS attack is the same but with a single compter.

 

oh ok

[LeonidasD]

Download more RAM

 

I don't know, I've never dabbled with servers and I've never had my own site.

 

 

this is on my personal internet..

[Wano97]

this is on my personal internet..

How do you even know that you're getting (D)DoS'd ?

[LeonidasD]

How do you even know that you're getting (D)DoS'd ?

 

 

it's in my logs

[Icefire555]

Not all logs are accurate. I had my old router telling me I was getting port scanned every like 10min. Which was likly not true. 

 

I have also delt with DDos and have had a lot of time to study it. So I'll tell you what I know so far...

 

(Sit down for story time)

[LeonidasD]

Not all logs are accurate. I had my old router telling me I was getting port scanned every like 10min. Which was likly not true. 

 

I have also delt with DDos and have had a lot of time to study it. So I'll tell you what I know so far...

 

(Sit down for story time)

 

 

lol, im ready for story time

[Icefire555]

If it is truly a DDOS there is not a lot you can do..

 

What you need to know is no matter what a DDOS attack can take down the best of servers if they hit it hard enough.

 

There are 2 aspects to an attack to take note of. The bandwidth of the attack and the packets sent. 

 

If someone hits you with 1Gbit/sec and you have a 10mbit internet plan the attack will occupy ALL of the space unless your ISP stops it themself. what this means is that you will not be able to download anything till the attack is gone.

The average router tried to reply to packets. and when it does the attack will be sent back occupying your upload speed aswell. Meaning you wont be able to get anything out of your network either.

 

___

The next thing to take not of is the packet amount. The more packets sent usually the more of your router's CPU is occupied. if your router hits 100% it will freeze all network usage.

A bigger router will allow you to defend against this however even if your router is at 1% cpu usage under an attack it can still occupy all of your bandwidth. 

[LeonidasD]

If it is truly a DDOS there is not a lot you can do..

 

What you need to know is no matter what a DDOS attack can take down the best of servers if they hit it hard enough.

 

There are 2 aspects to an attack to take note of. The bandwidth of the attack and the packets sent. 

 

If someone hits you with 1Gbit/sec and you have a 10mbit internet plan the attack will occupy ALL of the space unless your ISP stops it themself. what this means is that you will not be able to download anything till the attack is gone.

The average router tried to reply to packets. and when it does the attack will be sent back occupying your upload speed aswell. Meaning you wont be able to get anything out of your network either.

 

___

The next thing to take not of is the packet amount. The more packets sent usually the more of your router's CPU is occupied. if your router hits 100% it will freeze all network usage.

A bigger router will allow you to defend against this however even if your router is at 1% cpu usage under an attack it can still occupy all of your bandwidth. 

 

 

does this affect my bandwidth usage? my internt is up 100 GB's than normal at the moment.

[Icefire555]

A bonus to having a good router is under an attack the only defense on your side is to DROP all the packets that are attacking you. This will leave your upload speed wide open and make your network appear to be offline. But attackers can be relentless. 

My router does this

 

My suggestion to you is to contact your internet provider and say you are being attacked and request them to change your IP address. 

Once you have done that keep your IP adress hidden! Skype is known to have an IP exploit that can give away a user's IP if an attacked knows a username.

 

VPNs are a great resource to hide your IP adress. 

With a virtual private network you connect to another network designed to transfer large amounts of data if someone looks up your IP with a skype exploit they will get the IP of the VPN's DataCenter. Not you. Any attacks will go to a huge network which should easily be able to stop the attack.

[Icefire555]

If it is not stopped I would assume it would occupy A LOT of bandwidth since that attack is designed to take up space.

[LeonidasD]

If it is not stopped I would assume it would occupy A LOT of bandwidth since that attack is designed to take up space.

 

 

Thanks heaps, ill call them tomorrow and see what happens thanks for your time 

[Icefire555]

Another thing that can be done is. If you have a HUGE upload and Download internet speed and a powerful router you can counter attack the attacker. 

 

(Take note) -> The attackers are normally random people. not the person that started the attack

 

By returning all the packets you can send enough packets to the routers that are attacking you to shut them down VIA a defensive DDOS.

 

This will take a powerful router, probably about a quad core+ router for a smaller attack-medium size attack. 

[LeonidasD]

Another thing that can be done is. If you have a HUGE upload and Download internet speed and a powerful router you can counter attack the attacker. 

 

(Take note) -> The attackers are normally random people. not the person that started the attack

 

By returning all the packets you can send enough packets to the routers that are attacking you to shut them down VIA a defensive DDOS.

 

This will take a powerful router, probably about a quad core+ router for a smaller attack-medium size attack. 

 

 

hahahha, no my dl is 6 mb and up is under 1 mbs

[Icefire555]

I have had to deal with is so much. I just wish they didn't exist. Ask your Internet provider about DDOS protection. if they cant do that see if you can get a network administrators number so you can contact them to "Null route" your IP when your under an attack. What this will do it disconnect you from the internet. So nothing will get to you and not occupy your bandwidth. while your internet provider can see what size of a problem it is.

[Icefire555]

Also a piece of advice! learn if you can ping your router! and if you can BLOCK PINGS! A common test to see if someone's network is up is to ping it. and if it says "Hello" the network is up. If you block Pings it will not say "Hello" to anyone trying to communicate.

[LeonidasD]

Also a piece of advice! learn if you can ping your router! and if you can BLOCK PINGS! A common test to see if someone's network is up is to ping it. and if it says "Hello" the network is up. If you block Pings it will not say "Hello" to anyone trying to communicate.

 

 

[Icefire555]

Please also take note that your firewall usually only blocks pings coming in from outside your home network. 

 

Internet -> |FireWall| -> Home network

 

Pinging from the inside doesn't actually test how other peoples see your network.

 

Computer -> Router -> Computer (Firewall never involved)

[Blade of Grass]

Sadly, the only thing you can usually do in a (D)DoS attack is to contact your ISP and see if they will mitigate it on their end. Other than that, in a home environment, there's not much you can do.

[Icefire555]

Sadly, the only thing you can usually do in a (D)DoS attack is to contact your ISP and see if they will mitigate it on their end. Other than that, in a home environment, there's not much you can do.

Yep its a sad thing that such a simple attack is so effective...