NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

FleetwoodZac's avatar
FleetwoodZac
Follower
May 31, 2022

C7000v2 crashing, several DoS attacks in logs

My C7000v2 is rebooting and/or dropping WiFi daily much to my consternation. My only lead as to why is are Pings of Death and Teardrop attacks in the logs. You can see those below. They're all originating from this IP: 66.128.31.208. According to who.is this is is from a business in Texas:

 

NetRange: 66.128.16.0 - 66.128.31.255
CIDR: 66.128.16.0/20
NetName: ERCOT
NetHandle: NET-66-128-16-0-1
Parent: NET66 (NET-66-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Electric Reliability Council of Texas, Inc. (ERCT-1)
RegDate: 2004-02-24
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/66.128.16.0

 

This seems very bizarre to me. I've read many other posts on this forum about false DoS logging and it potentially bogging down or crashing the hardware, but this seemed a bit different and warranting a unique post. Anyone have any ideas what's going on here? And what can I do to make my hardware more stable?

 

[DoS attack: Teardrop or derivative] from 66.128.31.208, port 02Sun May 29 19:46:23 2022252.184.243.175:066.128.31.208:0
[DoS attack: Ping Of Death] from 66.128.31.208, port 01Sun May 29 19:26:31 2022152.129.119.126:066.128.31.208:0
[DoS attack: Teardrop or derivative] from 66.128.31.208, port 08Sun May 29 19:23:48 2022252.184.243.175:066.128.31.208:0
[DHCP IP: 192.168.0.22] to MAC address f0:18:98:13:64:ec1Sun May 29 18:23:56 20220.0.0.0:00.0.0.0:0
[DoS attack: Teardrop or derivative] from 66.128.31.208, port 01Sun May 29 18:23:11 2022252.184.243.175:066.128.31.208:0
[DHCP IP: 192.168.0.26] to MAC address 5c:52:1e:9b:f3:861Sun May 29 18:09:00 20220.0.0.0:00.0.0.0:0
[DoS attack: Teardrop or derivative] from 66.128.31.208, port 01Sun May 29 17:58:33 2022252.184.243.175:066.128.31.208:0