| View previous topic :: View next topic |
| Author |
Message |
cmxflash
-
Joined: 11 Dec 2004
Posts: 872
|
 Posted: Sat Oct 15, 2005 6:25 pm Post subject: DDoSed? |
 |
|
| Okay, right now some newbie is DDoSing me, but since I've got a fast connection, he can't bring it down. Anyway, how do I get the IP of the idiot sending me 700+ packages/sec? I need some logging-tool, and I've searched Google, but I can't find anything. |
|
| Back to top |
  |
 |
MonkeyNation
-
Joined: 05 Feb 2005
Posts: 921
Location: Cardiff
|
| Posted: Sat Oct 15, 2005 6:37 pm Post subject: Re: DDoSed? |
|
|
| cmxflash wrote: | | Okay, right now some newbie is DDoSing me, but since I've got a fast connection, he can't bring it down. Anyway, how do I get the IP of the idiot sending me 700+ packages/sec? I need some logging-tool, and I've searched Google, but I can't find anything. |
Join the club.
Now though, I don't have the problem, or not a large enough one to concern me.
If you're using a gateway of some sort, I don't know; unless the gateway is sending it all to one machine. If you have a router of firewall or sorts, which has a logging feature, you could see if it logs blocked packets.
If you're connected directly, then I'm sure there are tools around for free.
_________________
 |
|
| Back to top |
    |
|
cmxflash
-
Joined: 11 Dec 2004
Posts: 872
|
| Posted: Sat Oct 15, 2005 6:42 pm Post subject: |
|
|
| I'm connected without any routers right now, so I need some logging-tool. |
|
| Back to top |
|
|
MonkeyNation
-
Joined: 05 Feb 2005
Posts: 921
Location: Cardiff
|
|
| Back to top |
|
|
p3
-
Joined: 17 Jun 2005
Posts: 615
|
| Posted: Sat Oct 15, 2005 7:10 pm Post subject: Re: DDoSed? |
|
|
| cmxflash wrote: | | Okay, right now some newbie is DDoSing me, but since I've got a fast connection, he can't bring it down. Anyway, how do I get the IP of the idiot sending me 700+ packages/sec? I need some logging-tool, and I've searched Google, but I can't find anything. |
I can relate *cough*
Anyways, I really don't have any clues. I googled for about 3 hours yesterday since someone was doing that to me... no such luck, |
|
| Back to top |
 |
|
Anonymoose
-
Joined: 09 Sep 2003
Posts: 2192
|
| Posted: Sat Oct 15, 2005 7:20 pm Post subject: |
|
|
Any decent personal firewall will have ample logging features. I recommend the older version of Kerio (2.1.5) for being lightweight but hugely configurable. It will happily log whatever you tell it to in terms of specific ICMP events, or TCP/UDP traffic on specific ports. Alternatively if you're feeling adventurous, Ethereal or Snort.
_________________
"Invent an idiot proof webserver and they'll invent a better idiot..." |
|
| Back to top |
|
|
MonkeyNation
-
Joined: 05 Feb 2005
Posts: 921
Location: Cardiff
|
| Posted: Sat Oct 15, 2005 7:44 pm Post subject: |
|
|
| Anonymoose wrote: | | Any decent personal firewall will have ample logging features. I recommend the older version of Kerio (2.1.5) for being lightweight but hugely configurable. It will happily log whatever you tell it to in terms of specific ICMP events, or TCP/UDP traffic on specific ports. |
Beat my head to it.
The newer versions seem to be a little too "heavy" for my liking.
_________________
|
|
| Back to top |
|
|
erosolmi
-
Joined: 26 Mar 2005
Posts: 8
Location: Milan, Italy
|
|
| Back to top |
 |
|
aprelium
-
Joined: 22 Mar 2002
Posts: 6800
|
| Posted: Sun Oct 16, 2005 2:17 pm Post subject: Re: DDoSed? |
|
|
cmxflash,
Ethereal ( http://www.ethereal.com/ ) is probably what you're looking for. It can capture all the network traffic of your computer.
_________________
Support Team
Aprelium - http://www.aprelium.com |
|
| Back to top |
|
|
|
