North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: TCP session disconnection caused by Code Red?

  • From: Blaz Zupan
  • Date: Mon Aug 06 14:49:44 2001

> Your routers are brain dead from the load.. routers that are used to
> handling a few thousand connections are being asked to handle 10's of
> thousands. 1 good 1000+ address scan from an ISDN user kills my
> Lucent/Ascend TNT unless we filter for it.

Hmmm, a 7206 should surely be able to handle more than 600 packets per second
or am I wrong here? Our upstream E3 is currently used a maximum of 15Mbps and
at peak time we see about 3000 pps on that link. If 20% of that is TCP RST
packets, that would be 600 packets per second. And I'm sure somebody else on
this list would be noticing this as well, especially with higher speed links.

Blaz Zupan,  Medinet d.o.o, Trzaska 85, SI-2000 Maribor, Slovenia
E-mail: [email protected], Tel: +386-2-320-6320, Fax: +386-2-320-6325