RAX35

---

ShyHigh420 wrote:

Got a dos attack on this router ....

---

Netgear's firmware is great at creating false reports of DoS attacks. Many of them are no such thing.

Search - NETGEAR Communities – DoS attacks

Use Whois.net to see who is behind some of them and you may find that they are from places like Facebook, Google, even your ISP.

Here is a useful tool for that task:

IPNetInfo: Retrieve IP Address Information from WHOIS servers

Hello.

How do I stop logging of these Fraggle attacks?

Can I put a specific IP Address on a blacklist on the router? (Tried to today in Advanced/Security/Block Services for User Defined/UDP/67/67/Only this address 96.120.100.241 and get error "Invalid user defined service type.")

My router is actually a RAX54S-100NAS. Same problem with DoS Fraggle showing up in logs.

[admin login] from source 192.168.1.8, Saturday, Mar 02, 2024 15:17:51
[DoS attack: Fraggle Attack] from source 96.120.100.241,port 67 Saturday, Mar 02, 2024 15:12:27
[DoS attack: Fraggle Attack] from source 96.120.100.241,port 67 Saturday, Mar 02, 2024 15:02:25
[DoS attack: Fraggle Attack] from source 96.120.100.241,port 67 Saturday, Mar 02, 2024 14:52:12
[DoS attack: Fraggle Attack] from source 96.120.100.241,port 67 Saturday, Mar 02, 2024 14:41:19

My ISP is Comcast/Xfinity, 96.120.100.241 is a Comcast-owned IP address geographically close to me.

I spent >4 hours back and forth in chats and on the phone with Xfinity Inet Security Team folks yesterday trying to sort this. They finally told me to buy a newer "gamer router" to solve the problem. I did wonder yesterday if this logging behavior was a Netgear firmware "feature", and on further research today, that would seem to be probable cause in this case.

I'm disappointed to find this is a years long ongoing issue with Netgear firmware never resolved.