cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
1,782 Views
Message 1 of 5

Dos Attacks on New router

Just signed up today and had my router fitted, all went well.

I'm now getting Kaspersky constantly flagging me about Blocking network attacks and I've logged onto the Hub and checked the event log and I'm constantly getting this:

i've not changed anything about my usage habits since moving onto BT

User:******
User type: Active user
Component: Network Attack Blocker
Result description: Blocked
Name: Scan.Generic.PortScan.UDP
Object: UDP from 2a00:1450:4009:c00::7f at 2a00:23c6:7baa:bd01:25bf:88a8:57a5:7181:50831
Additional: 2a00:23c6:7baa:bd01:25bf:88a8:57a5:7181
Databases release date: Today, 14/03/2023 06:01:00

DoS(SYN Flooding): IN=ppp1 OUT= MAC= src=142.114.15.208 DST=86.137.24.181 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=36908 DF PROTO=TCP SPT=47170 DPT=50508 WINDOW=65535 RES=0x00 SYN URGP=0 MARK=0x8000000

0 Ratings
Reply
4 REPLIES 4
1,776 Views
Message 2 of 5

Re: Dos Attacks on New router

Ive marked kaspersky to ignore scans, but BT won't let me manage advanced settings from the Hub, i need to use the app, when i use the app it says no account is setup..?

0 Ratings
Reply
1,755 Views
Message 3 of 5

Re: Dos Attacks on New router

To access advanced settings you need to enter the admin password on the pull out piece of plastic on the hub. Not that it will help you with the problem. There is nothing you can do to prevent Dos attacks, its just a fact of life  with being connected to the internet.

If you disconnect the hub from line for half an hour or so, you will get a different public IP address which may or may not alleviate the problem.

 

1,656 Views
Message 4 of 5

Re: Dos Attacks on New router

Hi there, Slightly different aspect on attacks/security.

Mail hacked on BT, talked to support who advised on 2 Part OAu2 as it appears that BT mail not most secure !.

Hard to verify this works OK !.

rgds

 

 

0 Ratings
Reply
1,605 Views
Message 5 of 5

Re: Dos Attacks on New router

Most likely you put your details on to a fake site or you have managed to install code on a machine, could be from PC, Shield to plex. 

You need to insure all equipment is up to date with security patches and known vulnerabilities are patched. Never install software unless it’s from a proven source.

As for the log showing DoS, it’s just a scan, if you ever owned say a NG router you will see lots, some are not correct values and with a denial service attack it will knock you off line. Most of the time the firewall is doing it’s job to stop the scans but not all logs show correctly which plagues most routers to be honest.

0 Ratings
Reply