nanog mailing list archives

Re: TCP session disconnection caused by Code Red?

From: Blaz Zupan <blaz () amis net>
Date: Mon, 6 Aug 2001 20:46:26 +0200 (CEST)

Your routers are brain dead from the load.. routers that are used to
handling a few thousand connections are being asked to handle 10's of
thousands. 1 good 1000+ address scan from an ISDN user kills my
Lucent/Ascend TNT unless we filter for it.


Hmmm, a 7206 should surely be able to handle more than 600 packets per second
or am I wrong here? Our upstream E3 is currently used a maximum of 15Mbps and
at peak time we see about 3000 pps on that link. If 20% of that is TCP RST
packets, that would be 600 packets per second. And I'm sure somebody else on
this list would be noticing this as well, especially with higher speed links.

Blaz Zupan,  Medinet d.o.o, Trzaska 85, SI-2000 Maribor, Slovenia
E-mail: blaz () amis net, Tel: +386-2-320-6320, Fax: +386-2-320-6325

Current thread:

TCP session disconnection caused by Code Red? Blaz Zupan (Aug 06)
- Re: TCP session disconnection caused by Code Red? mike harrison (Aug 06)
  - Re: TCP session disconnection caused by Code Red? Blaz Zupan (Aug 06)
    - Re: TCP session disconnection caused by Code Red? mike harrison (Aug 06)
    - Re: TCP session disconnection caused by Code Red? Stephen J. Wilcox (Aug 06)
    - Re: TCP session disconnection caused by Code Red? Blaz Zupan (Aug 06)
- <Possible follow-ups>
- Re: TCP session disconnection caused by Code Red? George William Herbert (Aug 06)
  - Re: TCP session disconnection caused by Code Red? Kevin Gannon (Aug 06)
  - Re: TCP session disconnection caused by Code Red? Alex Bligh (Aug 06)
    - Re: TCP session disconnection caused by Code Red? Craig Partridge (Aug 06)
    - Re: TCP session disconnection caused by Code Red? Eric A. Hall (Aug 06)
    - Re: TCP session disconnection caused by Code Red? Daniel Senie (Aug 06)
    - RE: TCP session disconnection caused by Code Red? David Schwartz (Aug 06)

(Thread continues...)