nanog mailing list archives

Re: Increase of DOS attacks using TCP src and/or dst of 0

From: Christopher Morrow <morrowc.lists () gmail com>
Date: Wed, 7 Mar 2012 16:29:46 -0500

On Wed, Mar 7, 2012 at 3:45 PM, Matthew Huff <mhuff () ox com> wrote:

Anyone else see a massive increase of scanning/dos with TCP source and/or
dst port of 0? We started seeing a massive increase today creating some
issue with our firewalls.


srs/dst of 0 as measured how? (tcpdump? netflow? app logs?)

Current thread:

Increase of DOS attacks using TCP src and/or dst of 0 Matthew Huff (Mar 07)
- Re: Increase of DOS attacks using TCP src and/or dst of 0 Mike Gatti (Mar 07)
- Re: Increase of DOS attacks using TCP src and/or dst of 0 Christopher Morrow (Mar 07)
  - Re: Increase of DOS attacks using TCP src and/or dst of 0 Pete Carah (Mar 07)
- Re: Increase of DOS attacks using TCP src and/or dst of 0 Chris Stone (Mar 07)
  - Re: Increase of DOS attacks using TCP src and/or dst of 0 George Herbert (Mar 07)