- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
C6300 DoS attack ICPM Flood Attacks
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
C6300 DoS attack ICPM Flood Attacks
I've been having lots of issues with loss of wifi over the last few months. Lots of T3 and T4 errors and having to reboot my router multiple times a day. Cable guys finally came out after the 2nd time and found the issue with a bad wire on the outside. They fixed it and we haven't had any events logged since or any major outages! Woohoo! The only issue now is that since i had been motitoring event logs and logs for a while now, I realized that i've been getting a lot of flood attacks. Most times I don't even notice them but a few times I could tell they happened because everything slowed down and a few devices lost connectivity (not all, is that normal?). I looked up the IP addresses and they come from all over the place. China, Czechia, Russia, Switzerland, Hong Kong, South Korea, Canada, and sometimes from the US - mostly universities?? University of Wisconsin, Univrsity of Southern California. After the attacks the logs show multiple [DHCP IP: (XXX.XXX.X.XX)] to MAC address (Is this our devices coming back online?) Is there anyway to stop these? Is it anything I should be worried about? Sometimes I also get Port Scans but they don't happen as often. Thanks for any suggestions.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: C6300 DoS attack ICPM Flood Attacks
Have your ISP change your WAN IP address.
Logs are just reporting whats happening and as long as the modem is working, your ok. The system is blocking and reporting whats going on.
• Introducing NETGEAR WiFi 7 Orbi 770 Series and Nighthawk RS300
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more