Hey communety, I have some problems with my internet connection and I think somebody is using an "ip stresser" to disconnect me from the internet. I captured using wireshark some package and ask somebody to look at it. The files (3) are anonymised using tracewrangler and uplouded to dropbox. https://www.dropbox.com/sh/cs3wlpwqp5tlftd/AACh9Lrcbe_BntWkDXbZ8srja?dl=0 thanks in advanced You are the best :) Gr, JP asked 21 Feb '15, 13:34  jplwolters |
One Answer:
Apparently you captured on your local network. You won't be able to see and "ip stresser" (what is that?) traffic if a bad guy is really hammering your link, because your firewall/router will drop it, so you won't see that traffic on the local network. There are no (obvious) signs for any kind of DoS attack. There are a some TCP RESETS, but all from your internal clients and by far less than TCP SYN. The only strange thing is that you are using a lot of high ports to connect to servers on the internet. That could be gaming traffic. Due to the use of an anonymizer it's not possible to analyze that any further. Therefore, without more information, it's impossible to give any meaningful answer. So, why do you believe you are being disconnected from the internet? Regards answered 23 Feb '15, 09:20  Kurt Knochner ♦ |
