syn Flooding attack.
-
Hi friends ,
i configured pf sense as Multi-wan load balancer.
From last Wednesday the system received Syn flood attack ,it consumed my all the bandwidth on my routers.Not only that the overall network has been slowed.The attack was hit to my OpenVPN access server in my DMZ
the flood was directly attacked to the Openvpn Access server(port 1194 may be). And what is the vulnerability of this case.
so how can i prevent this attack from the pf-sense.
appreciate replies..! -
Assuming you've got pfSense next to your Internet connection, nothing. PfSense is your protection for your network.
-
This post is deleted! -
My network basically like this
-
@sahan said in syn Flooding attack.:
it consumed my all the bandwidth on my routers
You can not protect against a volumetric attack at your device.. The attack has to be addressed upstream of your pipe..
If the pipe is full the pipe is full, there is nothing you can do at your end of the pipe..
-
so how to mitigate this attack from my network
what is your suggestion -
@johnpoz said in syn Flooding attack.:
u can not protect against a volumetric attack at your device.. The attack has to be addressed upstream of your pipe..
If the pipe is full the pipe is full, there is nothing you can do at your end of the pipe..Talk to your ISP, needs to be fixed further up the chain.
-
You need to get with your ISP on a volumetric attack, unless your advertising your own network space and could use a method of RTBH (Remotely-triggered Blackholing)...
-
ok ill contact my ISP
thanks lot my friends -
Keep in mind that ddos protection from your ISP normally comes with some sort of cost..
-
@johnpoz ok thanx