For some time our school have had problems with suddenly being cut of our connection to WAN.
Our firewall is bombed with IP's from alot of countries. You can see the .pdf i attached, showing over 20 DROPS per second at peek.
This makes our network go down. Nothing will work for 15 min, until the number of DROPS slowly fades away and alot DHCP releases are assigned.
The connection to WAN is totally lost, and even our provider cant access there modem in between the fiber and the router.
We got a company looking at it for us, but i want to put this out in the world to try to understand and share the problem, maybe later a solution.
I'm pretty sure it isent a DDOS attack, due to a correct setup in our firewall.
The problem often occur when there are alot of students and teachers on our network.
Could it be an old switch?
Could it be the wifi controller?
Could it be a broken fiber?
Could it be our provider?
Do you have any test scenarios i should do?
Do you have any ideas what to do under a fall out?
Hope you can help me find the issue.
Best regards Mike Kristensen