NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
"DoS attack: Fraggle Attack" almost every 10 seconds
Hello. I replaced an aging gateway firewall/router/gateway lately and my Nighthawk X6S has plenty of this Fraggle Attack in its Log. Does anyone know what is this? What port/s does this pertain to...
firefox111 wrote:
My log is now free of Fraggle Attack entries. I disabled DoS attack reporting in the Log.
Someone here recently told me I was mad for suggesting that.
Netgear's firmware is great at creating false reports of DoS attacks. Many of them are no such thing.
Search - NETGEAR Communities – DoS attacks
If these events are slowing down a router, that may be because it is using up processor time as it writes the events to the logs. Anything that uses processor power – event logging, QoS management, traffic metering – may cause slowdowns. Whenever people see a log full of that sort of stuff, it is worth disabling logging of DoS attacks and seeing if that reduces the problem. This does not prevent the router from protecting you from the outside world. It just doesn't write the details to the logs.
Some people go so far as to Disable Port Scan and DoS Protection to no ill effect.
Even if I disable the reporting of the DoS attacks on the Log, it is still obvious that it is still being recorded. The reason I say this is when I re-enable the DoS attack, old entries pop up on the display! It is obviously eating processor time writing those events in the log.
The Nighthawk X6S processor is damn slow!
I think I'm ready to replace it.
What Firmware version is currently loaded?
What is the Mfr and model# of the Internet Service Providers modem/ONT the NG router is connected too?How do you have the routers IP configuration set up for? 192.168.5.1?
What devices on your net work is using 192.168.5.1?
firefox111 wrote:
Even if I disable the reporting of the DoS attacks on the Log, it is still obvious that it is still being recorded. The reason I say this is when I re-enable the DoS attack, old entries pop up on the display! It is obviously eating processor time writing those events in the log.
The Nighthawk X6S processor is damn slow!
I think I'm ready to replace it.
FURRYe38 wrote:What Firmware version is currently loaded?
What is the Mfr and model# of the Internet Service Providers modem/ONT the NG router is connected too?How do you have the routers IP configuration set up for? 192.168.5.1?
What devices on your net work is using 192.168.5.1?
Here's my infrastructure: Cable Internet going into a router/firewall/gateway with LAN subnet of 192.168.5.0/24. The R8000S WAN port is connected to that LAN on the gateway IP of 192.168.5.1. I have port forwarding set up in the router/firewall/gateway to forward to the R8000S for dozen cameras, a file server, a PC which powers up on demand using WOL when I'm away. Yes, the R8000S is also setup with port forwarding to forward traffic to specific cameras. Oh, one more thing that I just did today - I disabled the Port Scan and DoS Protection in the R8000S since I already have a firewall on its WAN side.
Correction: I was refering to my Nighthawk X6S as "R8000S" - it should be R8000P.
Anyway, I forgot to mention that this R8000P is going crazy with all the devices connected to it. This afternoon, I went to Security->Access Control and it displayed all devices as Connection Type of "Wired(wired)" even though most of the connected devices are on WiFi! I had to reboot it quick.
Yes, I think it is time to replace it. I'm researching on which one (which brand) to go with. There are AX WiFi 6 routers out there which advertise with quad core Intel processor. That would be awesome.
I just received my Netgear CM1000 cable modem today. I have to replace my CM600 because I just upgraded my cable Internet to 1Gig. The CM600 can only push 650+. I'm hoping that with the CM1000, I will get around 950. We'll see.
I was concerned about that, I ran several tests and did not see a performance hit. I don't think it's using much processing since there are attacks for it to block. I'm pretty sure it's a coding issue reacting to something. If you find a better product do tell.... Cisco stopped support their usb modem backup feature, I switched to this one.
