Hi all,
we have also observed this type of attack, it takes lot of bandwidth
and firewall connections. some time our firewall was unable to drop
the packets also.. we managed to stop this attack by putting ACL like
deny RDP from any source and allow only some ips which are required to
access.. and for some clients we have changed default RDP port Number.
as per our observation this attack is DDOS/Reflective DDOS.
That's all
Regards,
Madan
>--
>Need IPv6 Training? See
>http://www.ipv6securitytraining.com . IPv6 Security Training
>
>To unsubscribe from this group, send email to
>iscdshield+...@googlegroups.com
>For more options, visit this group at
>
>http://groups.google.com/group/iscdshield?hl=en
>
>Email secured by Anti Spam at CtrlS
>
>
Email secured by Anti Spam at CtrlS
Email secured by Anti Spam at CtrlS