Network Security: Detailed info on DoS/DDoS on port 1863(MSN protocol)

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Incidents

[Top] [All Lists]

DoS/DDoS on port 1863(MSN protocol)

from [Diego Sebastián González] Network Security

[Permanent Link]

Subject:	DoS/DDoS on port 1863(MSN protocol)
Date:	Thu, 23 Sep 2004 13:01:05 -0300

Hi all,
 I work in an Satellite ISP(teleport) and we are experimenting a Dos/DDoS
Attack in our routers on port 1863.
Too much SYNs are being sent from a lot of our Public IP Customers to 1863
port to MSN Servers.
10.000 connections per seconds are generated in our TCP accelerators
systems, and overflows this system and borders routers.
We can identify the customers, but are too much. We cannot drop this port
because MSN application uses and we cannot apply policies to our firewalls
because the MSN Servers response to SYNs generated from our customers.
We have Allot systems that perform filters by IP header, but really, we need
to filter by application layer.

Anybody has an idea to solve this problem?

Tks in advance.

Diego S. González
Operations Team
Telespazio
Visit us @ http://www.finmeccanica.it
Visit us @ http://www.telespazio.it

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Yahoo Account hacking, Freilich, Robert Port 7000 (Apple File Share) DoS/DDoS underway, David Gillett Re: Port 7000 (Apple File Share) DoS/DDoS underway, Christine Kronberg Re: Port 7000 (Apple File Share) DoS/DDoS underway, Daniel Hanson Re: Port 7000 (Apple File Share) DoS/DDoS underway, Christine Kronberg Re: Port 7000 (Apple File Share) DoS/DDoS underway, Chris Krough Re: Port 7000 (Apple File Share) DoS/DDoS underway, Chris Krough DoS/DDoS on port 1863(MSN protocol), Diego Sebastián González <= RE: DoS/DDoS on port 1863(MSN protocol), easternerd Re: DoS/DDoS on port 1863(MSN protocol), Kevin Reardon Re: DoS/DDoS on port 1863(MSN protocol), Tillman Hodgson data payload in SYN (Re: DoS/DDoS on port 1863(MSN protocol)), Martin Mačok Re: DoS/DDoS on port 1863(MSN protocol), terry white Re: DoS/DDoS on port 1863(MSN protocol), Martin Mačok Re: Port 7000 (Apple File Share) DoS/DDoS underway, Jonathan Nichols Re: Yahoo Account hacking, xploitable

Previous by Date:	Re: Port 7000 (Apple File Share) DoS/DDoS underway, Christine Kronberg
Next by Date:	RE: DoS/DDoS on port 1863(MSN protocol), easternerd
Previous by Thread:	Re: Port 7000 (Apple File Share) DoS/DDoS underway, Chris Krough
Next by Thread:	RE: DoS/DDoS on port 1863(MSN protocol), easternerd
Indexes:	[Date] [Thread] [Top] [All Lists]