MPATechTeam
asked on
ISP Shuts Down Internet Port due Suspicious Traffic (DOS)
Hi All,
This is related to an old issue which you can view the details of here:
https://www.experts-exchange.com/questions/28225609/ISP-Shuts-Down-Internet-Port-due-Suspicious-Traffic-DOS.html
(It's worth reading at least the first post)
This issue has again resurfaced, but this time we can not find any suspect software or malware on the individual PC's.
For this reason we are seeking a better way to monitor the SOURCE of this issue and trace down the problem.
Our switches are: Netgear gs752ts
They have a feature called "Auto-DOS Mode" which is currently disabled but can be enabled.
From reading the description it appears this feature is designed to prevent DoS attacks by shutting down the individual port causing the trouble.
We are considering enabling this feature but wanted to get some additional feedback before doing so.
Additionally --
You may have a better suggestion for how we can:
A) Determine where the suspicious traffic is originating
-or-
B) Stop the origination of suspicious traffic in the first place.
I look forward to your advice and feedback on this.
This is related to an old issue which you can view the details of here:
https://www.experts-exchange.com/questions/28225609/ISP-Shuts-Down-Internet-Port-due-Suspicious-Traffic-DOS.html
(It's worth reading at least the first post)
This issue has again resurfaced, but this time we can not find any suspect software or malware on the individual PC's.
For this reason we are seeking a better way to monitor the SOURCE of this issue and trace down the problem.
Our switches are: Netgear gs752ts
They have a feature called "Auto-DOS Mode" which is currently disabled but can be enabled.
From reading the description it appears this feature is designed to prevent DoS attacks by shutting down the individual port causing the trouble.
We are considering enabling this feature but wanted to get some additional feedback before doing so.
Additionally --
You may have a better suggestion for how we can:
A) Determine where the suspicious traffic is originating
-or-
B) Stop the origination of suspicious traffic in the first place.
I look forward to your advice and feedback on this.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER