Internet dropping, logs say dos attack icmp flood from different ips (C6300v2)
Hello,
I have been having this issue for about two weeks now. My wireless devices will randomly drop connection and when I'm on my desktop (wired) I get lag and or bad packet loss also randomly. especially while playing games and sometimes while browsing the internet. I have tried to do accouple of things that hasn't worked including changing my DNS, changing my coax to the modem and ethernet to my pc, and resetting my modem quite a few times. I have contacted my ISP (cox) and they believe its an issue with wiring and sending a tech out to look into it. I have noticed that it will drop sometimes when there isn't a ICMP flood. I'm just getting frustrated with this and would like some help figuring it out and solving it. I will attach screen shots of the logs and event logs to see if that will help.
My MODEL is the C6300v2, FIRMWARE is V1.03.04 (there is no update firmware in the admin setting of modem).
Could a damaged cable or connection cause this?
Is it my ISP screwing me over in a bit to make me upgrade/ Them putting too many people on there service in one area? (live in an apartment)
Some of the ICMP floods are random IP addresses and it seems to me to be hitting my modems IP not any devices on my network (if that's a thing idk about network stuff) that IP on the logs as the target is the same one under internet port in the advanced home. some of the more recent IP addresses are coming from AWS but some of the old ones where from random places like Denver and Albania. There is a constant ICMP flood from fe80:0000:0000:0000:6e13:d5ff:fe21:d019 about every 10 min. form what I could find this is just the ISP talking to my router??
Any help would be appreciated greatly thank you.
not sure which one is the connection status screen but all the things say they are green and connected. Ill attach what I think you are asking about. Just let me know if its not the right thing.
Thank you for the reply!
Also have notice there is more ICMP flood attacks in the logs more from amazon and again some from other places around the world. could my Alexa's be causing this?
Checked the cable connection again tonight and this is what it is showing. I'm still getting drops in service and those ICMP flood dos attacks are still happening from random IP addresses.
Ill attach screen caps of both.
Tech came by today and said the line was good, said the power was too high and lowered the power. After they left I rebooted the router and there wasn't any correctable or uncorrectable and the internet seemed to be fine. Checked the admin page later and there is a bunch of correctable and uncorrectable and there is still more of those ICMP FLOOD DOS attacks from random IP addresses. But, I haven't had any issues with loosing connect so far. About to see if that still holds true with playing some games.
Should I be worried about the multiple [DOS attack] ICMP Flood attacks ?
Should I be worried about the PORT Scan PROTO TCP dos attack?? (source IP is 60.161.81.116 somewhere in china)
If I still have issues what should I do, the tech said the lines looked fine and lowered the power with a thing he put on the coax?
Also haven't had any more criticals since the tech came.
Ill attach screen shots again.
Some clarification on if those two types of dos attacks are a security threat and if so how to protect myself would be greatly appreciated, to but me at ease or into action.
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more