Network Security: Detailed info on Why bandwidth consuming ddos attack using only udp or icmp?

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

Why bandwidth consuming ddos attack using only udp or icmp?

from [MontyRee] Network Security

[Permanent Link]

Subject:	Why bandwidth consuming ddos attack using only udp or icmp?
Date:	Fri, 29 Feb 2008 02:52:18 +0000



Hello, list.

I have operated network in my company and recently I have experienced
some ddos attack(inbound) on my network.

It seems that the ddos attack was divided in two

first, the bandwidth consuming attack was all consist of udp or icmp using big 
size packet(about 1500 byte).
second tcp based attack for example http(80/tcp) is mostly creates lots of pps 
using small size packet(about 40 byte )

So, some network administrator said that he filtered all udp and icmp
just against the bandwidth consuming ddos attack at the border router.
(Surely some problems would be happen..dns..somethinf like that)

and I have one question.

Is it impossible or ineffective using tcp for bandwidth consuming attack in the 
point of attacker?
anyone who saw the bandwidth consuming attack using tcp?


Thanks in advance.

_________________________________________________________________
확 달라진 MSN 홈페이지, 지금 바로 만나보세요!
http://www.msn.co.kr

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Why bandwidth consuming ddos attack using only udp or icmp?, MontyRee <= RE: Why bandwidth consuming ddos attack using only udp or icmp?, David Gillett Re: Why bandwidth consuming ddos attack using only udp or icmp?, razigarbie RE: Why bandwidth consuming ddos attack using only udp or icmp?, Ajay Tikoo

Previous by Date:	Re: Enterprise Microsoft / application patching solutions?, Kelly Keeton
Next by Date:	Re: jitter testing, markus sesser
Previous by Thread:	Call for papers, Christian Theilmann
Next by Thread:	RE: Why bandwidth consuming ddos attack using only udp or icmp?, David Gillett
Indexes:	[Date] [Thread] [Top] [All Lists]