Preface: ICMP floodLogo -Internet Security Systems

ICMP flood
advICE :Intrusions : 2000110
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

A Denial of Service attack has been attempted.

Details

A large number of ICMP control messages (excluding ECHO frames) have been seen in a short period of time. This usually indicates a Denial-of-service. The hacker is trying to overwhelm a system by sending it large numbers of frames which are usually reserved to help control the flow of information on the Internet.

Spoofing

This attack is very likely to be spoofed.

 parametric information
PercentFromIntruderThe percentage of ICMP frames that were from the same address.

 configuration for this item
icmp.maxcnt100This intrusion detection is triggered if the number of ICMP frames per second (excluding ECHO frames) exceeds this count.

 
Version appeared: 2.1
Privacy Policy |  Copyright Info