Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Dos Attack

From: "Michael Bellears" <MBellears () staff datafx com au>
Date: Sat, 13 Mar 2004 09:54:07 +1000

The offender is connected on the following IP Address..
adsl-068-209-154-249.sip.btr.bellsouth.net

Bellsouth.net have failed to respond. 

Our router shows the following floodnet under his control 
attacking our network.

I have null-routed the destination address that is being 
attacked, to avoid it spreading to the rest of our network.. 
Any ideas who I can contact above bellsouth to get a stop put 
to this ? We are loosing a lot of money, due to SLA's etc.


You need to contact your Upstream(s), and request they temporarily block
any traffic with source IP adsl-068-209-154-249.sip.btr.bellsouth.net(Or
any others causing probs) - Blocking it at your Router will achieve
nothing.

MB


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: