Topic: SYN Attacks

Post SYN Attacks
by blackbarret on mardi 23 février 2021

I recently received a full blown SYN attack that kept on for 2 weeks, i dont know if others
have experienced anything related, the sources where spoofed however came from:

I spoke with multiple IT teams from Brazil and the Netherlands and it we deducted that
this is a so called middle-men attack, they use spoofed packets that send a SYN request
using a spoofed source packet, this source was the target. I had to reinstate a mitigation
layer with another ipv4 (lease).

If anybody is experiencing this right now, let me know I can help you with a solution (if Dynu's rules allow me i hope).

I attached the attack map in the attachment of this thread what we received, was nasty.

Greets B.

Reply with quote | Report