bpl5000
asked on
How to block a Chargen DrDoS attack?
Our organization is getting hit by Chargen DrDoS attacks. We tried blocking port 19, but that did not help. We have an ASA 5510, what do we need to do to stop this?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
We have contacted our ISP. We were also able to track down who launched the attack and unfortunately a 17 year old boy will be getting a visit from law enforcement. He probably thought it was a cute joke to play, but now it will bring him trouble. Oh well, maybe it will deter him from getting into even more trouble in the future.
ASKER
Disable Echo, Chargen and discard
no service tcp-small-servers
no service udp-small-servers
But these commands do not work on our ASA. Does anyone know if there is a way to disable the Chargen service on an ASA 5510?