adrien.timmer
11/01/2016, 20h33
Its possible that your DNS server was misconfigured and allowed recursive queries which are commonly used in DNS amplification attacks.
- DEBUT DES INFORMATIONS COMPLEMENTAIRES - Attack detail : 14Kpps/7Mbps dateTime srcIp:srcPort dstIp:dstPort protocol flags bytes reaso 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.160.64:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 193.108.91.154:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 95.100.174.66:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 95.100.174.66:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 23.61.199.67:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 23.61.199.67:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 95.100.174.66:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 193.108.91.154:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 23.61.199.67:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 95.100.174.66:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 193.108.91.154:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 184.26.161.65:53 UDP --- 65 ATTACK:DNS 2016.01.09 03:12:16 CET 91.121.222.155:46334 96.7.49.67:53 UDP --- 65 ATTACK:DNS - FIN DES INFORMATIONS COMPLEMENTAIRES -