SYN AttacksTopic: SYN Attacks
I recently received a full blown SYN attack that kept on for 2 weeks, i dont know if others
have experienced anything related, the sources where spoofed however came from:
- OHV SAS
- Suarnet.br.com
I spoke with multiple IT teams from Brazil and the Netherlands and it we deducted that
this is a so called middle-men attack, they use spoofed packets that send a SYN request
using a spoofed source packet, this source was the target. I had to reinstate a mitigation
layer with another ipv4 (lease).
If anybody is experiencing this right now, let me know I can help you with a solution (if Dynu's rules allow me i hope).
I attached the attack map in the attachment of this thread what we received, was nasty.
Greets B.
Reply with quote | Report
| Author | Topic: SYN Attacks |
|---|---|
|
blackbarret Joined: 2017/4/26 
|
SYN Attacks2021年2月23日 7:18 I recently received a full blown SYN attack that kept on for 2 weeks, i dont know if others have experienced anything related, the sources where spoofed however came from: - OHV SAS - Suarnet.br.com I spoke with multiple IT teams from Brazil and the Netherlands and it we deducted that this is a so called middle-men attack, they use spoofed packets that send a SYN request using a spoofed source packet, this source was the target. I had to reinstate a mitigation layer with another ipv4 (lease). If anybody is experiencing this right now, let me know I can help you with a solution (if Dynu's rules allow me i hope). I attached the attack map in the attachment of this thread what we received, was nasty. Greets B.
|
It is currently 2025年4月3日 1:02 US Mountain Standard Time
2025年4月3日 1:02