"URGENT request" Router Defense.

[Direwinds]

I'm using the asus GT5600, current firmware.

I was just hit by a botnet attack of 1100 attacks with in 2 mins and it was sustained for 19 mins before I managed to stop it.

 

It almost took out the router, my request is.

 

What is currently the most secure wifi router with gigabits lan ports.

 

Price doesn't matter.

[wANKER]

Phoning your ISP and requesting a new IP is your cheapest option. 

 

Or try force renew it yourself 

[wANKER]

Also, a new router won't do shit. 

Fact is, your ISP allowed that traffic through to you. 

 

 

[Alex Atkin UK]

Well a router can "help", up until the point it saturates your link.

I'd build an x86 router personally with something like pfSense, it should be able to handle anything that gets thrown at it.

[beersykins]

An attack at scale can saturate the connection before it reaches your router, making your selection irrelevant.

 

A secondary connection would be a better play, but it begs the question how you are 'randomly' targeted in the first place.

[Kered124]

Pfsense build- I completely support this option.

[Alex Atkin UK]

9 hours ago, beersykins said:

An attack at scale can saturate the connection before it reaches your router, making your selection irrelevant.

 

A secondary connection would be a better play, but it begs the question how you are 'randomly' targeted in the first place.

Depends, a lot of small connections can easily overrun most consumers routers well before your connection is actually saturated.  It certainly doesn't hurt to be as prepared as you can.

If its that bad it does saturate the link, its really down to the ISP to block it I'd think.  Fortunately never run into that issue.

[Donut417]

11 hours ago, beersykins said:

An attack at scale can saturate the connection before it reaches your router,

Yeah, but most internet connections are a shared media. Meaning at some point other customers would feel the pain of the attack. In my ISP's case about 130 people per node. Thats a lot people who will be calling and bitching. Plus it would take a large botnet, my ISP does about 10 Gbps per node from what I read. Im pretty sure a node going off line, Comcast would notice. 

[schizznick]

If money is no cost a Cisco ASA with firepower is a fantastic firewall with a steep learning curve. But as was stated a firewall on your connection will do little to mitigate the issue as once it's sent out the wire from your ISP it's affecting your connection. Changing your IP is the best solution at least until you get targeted again. Maybe change your IP then look at using a VPN.

[iJarda]

I would guess for SOHO it is Turris Omnia or MOX from CZ.NIC. It has automatic firewall rules distribution, automatic updates etc. Yes, it lacks features like PBR, but it is SOHO, not enterprise...

check it out on https://www.turris.cz/en/ respectively https://omnia.turris.cz/en/ and https://mox.turris.cz/en/