Sgt Slaughter Posted January 10, 2005 CID Share Posted January 10, 2005 ok, here at my college, the network went down yesterday due to a power failure. dureing this time, the DHCP was down, while i was in my router checking setting i noticed this: I dont know if this was a legit protocal and my router freaked out or what. any ideas Quote Link to comment Share on other sites More sharing options...
MICROWAVE Posted January 10, 2005 CID Share Posted January 10, 2005 Sgt Slaughter, Here is some info.....its just another service attack, its been called the cousin of fraggle.... The "smurf" attack, named after its exploit program, is one of the most recent in the category of network-level attacks against hosts. A perpetrator sends a large amount of ICMP echo (ping) traffic at IP broadcast addresses, all of it having a spoofed source address of a victim. If the routing device delivering traffic to those broadcast addresses performs the IP broadcast to layer 2 broadcast function noted below, most hosts on that IP network will take the ICMP echo request and reply to it with an echo reply each, multiplying the traffic by the number of hosts responding. On a multi-access broadcast network, there could potentially be hundreds of machines to reply to each packet. Since your equiptment detected it, my guess is that it stopped it also,I really cant tell from the info you provided but this is just normal B.S. that goes on behind the scenes on most computers,. Just do a good system scan and look for any sign that there is a problem...... Microwave Quote Link to comment Share on other sites More sharing options...
resopalrabotnick Posted January 10, 2005 CID Share Posted January 10, 2005 fraggin scriptkiddies, i say. another good reason to just have your router ignore icmp traffic. Quote Link to comment Share on other sites More sharing options...
VanBuren Posted January 10, 2005 CID Share Posted January 10, 2005 I used to allow ICMP but then i got problems with hackers portscanning me all the time, i now block all ICMP traffic and have almost no attacks. VanBuren Quote Link to comment Share on other sites More sharing options...
MICROWAVE Posted January 10, 2005 CID Share Posted January 10, 2005 I used to allow ICMP but then i got problems with hackers portscanning me all the time, i now block all ICMP traffic and have almost no attacks. VanBuren Yep I'm in full stealth mode but I get pings all the time at least a few hundred a day and I'm not on any P2P sites...........just lucky I guess....LOL Microwave Quote Link to comment Share on other sites More sharing options...
resopalrabotnick Posted January 10, 2005 CID Share Posted January 10, 2005 bah. not even hackers. just pimplyfaced kids with nothing better to do thinking they're so cool dl'ing a script that runs canned attacks. Quote Link to comment Share on other sites More sharing options...
bigw Posted January 12, 2005 CID Share Posted January 12, 2005 Hate to say it but i have done it for fun but it has been a couple of years now Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.