F5F Stay Refreshed Power Users Networks I'm under attack.

I'm under attack.

I'm under attack.

Pages (3): 1 2 3 Next
P
phillikiev
Junior Member
Find
22
10-17-2016, 03:13 AM
#1
Could you clarify what occurred? It seems there might have been a DDoS attack on your DNS server, possibly affecting many requests to the TTRS.PW domain. I’m here to help investigate further.
Reply
Reply
P
phillikiev
10-17-2016, 03:13 AM #1

Could you clarify what occurred? It seems there might have been a DDoS attack on your DNS server, possibly affecting many requests to the TTRS.PW domain. I’m here to help investigate further.

Reply
Reply
A
A_Piggy
Member
Find
211
10-17-2016, 04:13 AM
#2
Adjust your filtering settings. Specify allowed or blocked domains for DNS queries.
Reply
Reply
A
A_Piggy
10-17-2016, 04:13 AM #2

Adjust your filtering settings. Specify allowed or blocked domains for DNS queries.

Reply
Reply
J
JuDaKoMo
Junior Member
Find
16
10-20-2016, 05:42 PM
#3
Reply
Reply
J
JuDaKoMo
10-20-2016, 05:42 PM #3

Reply
Reply
M
Marcustheduke
Senior Member
Find
679
10-26-2016, 07:15 PM
#4
Yes, you can implement a smart firewall with automated updates via an API that refreshes blocked IP lists daily.
Reply
Reply
M
Marcustheduke
10-26-2016, 07:15 PM #4

Yes, you can implement a smart firewall with automated updates via an API that refreshes blocked IP lists daily.

Reply
Reply
G
Groetzman
Junior Member
Find
20
10-29-2016, 08:45 PM
#5
Oh no, that sounds problematic... I was considering Cloudflare, but it seems it might not integrate well with DNS.
Reply
Reply
G
Groetzman
10-29-2016, 08:45 PM #5

Oh no, that sounds problematic... I was considering Cloudflare, but it seems it might not integrate well with DNS.

Reply
Reply
O
OreoHer0
Member
Find
226
11-03-2016, 10:26 AM
#6
It seems they likely scanned your device and identified it as a DNS server, then launched a DDoS attack against you. Despite having a public IP address, the attackers probably probed it and reported it as a DNS issue. Your fail2ban protection is in place for other threats, but it doesn’t cover DNS abuse. The TTRs.pw domain shows no results, which suggests it’s not associated with that site.
Reply
Reply
O
OreoHer0
11-03-2016, 10:26 AM #6

It seems they likely scanned your device and identified it as a DNS server, then launched a DDoS attack against you. Despite having a public IP address, the attackers probably probed it and reported it as a DNS issue. Your fail2ban protection is in place for other threats, but it doesn’t cover DNS abuse. The TTRs.pw domain shows no results, which suggests it’s not associated with that site.

Reply
Reply
S
Sihere
Member
Find
187
11-10-2016, 06:41 PM
#7
Cloudflare acts as your public DNS, which means they likely blocked it since it points to your local IP, but traffic is still routed through them.
Reply
Reply
S
Sihere
11-10-2016, 06:41 PM #7

Cloudflare acts as your public DNS, which means they likely blocked it since it points to your local IP, but traffic is still routed through them.

Reply
Reply
K
KMunster
Member
Find
75
11-12-2016, 06:00 AM
#8
DNS servers can be exploited for DDoS attacks through a technique called DNS amplification. The server you're using might have been targeted by attackers who sent spoofed requests, and this method remains in use despite being outdated.
Reply
Reply
K
KMunster
11-12-2016, 06:00 AM #8

DNS servers can be exploited for DDoS attacks through a technique called DNS amplification. The server you're using might have been targeted by attackers who sent spoofed requests, and this method remains in use despite being outdated.

Reply
Reply
K
kungfutyla
Posting Freak
Find
780
11-12-2016, 06:19 AM
#9
Really? That seems odd... it might be worth checking with them about it.
Reply
Reply
K
kungfutyla
11-12-2016, 06:19 AM #9

Really? That seems odd... it might be worth checking with them about it.

Reply
Reply
P
PersieO
Posting Freak
Find
786
11-28-2016, 02:19 PM
#10
The document explains DNS amplification attacks in simple terms. It outlines how attackers exploit open DNS resolvers to send large traffic volumes, overwhelming target servers. The glossary clarifies key terms like amplification, reflection, and the role of DNS protocols in such incidents.
Reply
Reply
P
PersieO
11-28-2016, 02:19 PM #10

The document explains DNS amplification attacks in simple terms. It outlines how attackers exploit open DNS resolvers to send large traffic volumes, overwhelming target servers. The glossary clarifies key terms like amplification, reflection, and the role of DNS protocols in such incidents.

Reply
Reply
Pages (3): 1 2 3 Next