Threshold for DDOS Attack
Clash Royale CLAN TAG#URR8PPP
up vote
2
down vote
favorite
I am trying to understand and simulate SYN Flood DDOS attacks. I am using snort to give me alerts. While I have control over the rate for my testing, I am interested in knowing what a good estimate of the traffic rate might be for an actual attack?
Thanks.
ddos denial-of-service snort
add a comment |Â
up vote
2
down vote
favorite
I am trying to understand and simulate SYN Flood DDOS attacks. I am using snort to give me alerts. While I have control over the rate for my testing, I am interested in knowing what a good estimate of the traffic rate might be for an actual attack?
Thanks.
ddos denial-of-service snort
add a comment |Â
up vote
2
down vote
favorite
up vote
2
down vote
favorite
I am trying to understand and simulate SYN Flood DDOS attacks. I am using snort to give me alerts. While I have control over the rate for my testing, I am interested in knowing what a good estimate of the traffic rate might be for an actual attack?
Thanks.
ddos denial-of-service snort
I am trying to understand and simulate SYN Flood DDOS attacks. I am using snort to give me alerts. While I have control over the rate for my testing, I am interested in knowing what a good estimate of the traffic rate might be for an actual attack?
Thanks.
ddos denial-of-service snort
ddos denial-of-service snort
asked 2 hours ago
cosmicrao
162
162
add a comment |Â
add a comment |Â
2 Answers
2
active
oldest
votes
up vote
2
down vote
I believe the average rate these days (Nov 2018) is on the order of 3 Gbps (though large scale attacks can easily go up to 100 Gbps). One note, TCP SYN floods are a fairly uncommon vector these days. UDP floods are much more common.
add a comment |Â
up vote
2
down vote
Nowadays TCP SYN attacks are not common, focus more on UDP amplification attacks over DNS, memcache and other UDP services. On the other hand, if you want to compute the traffic rate you can use the formula, IP header (20 bytes) + TCP header (20/32) bytes per packet, so is easy to know how many packets per second you need to send if you want a 1GB for example.
add a comment |Â
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
2
down vote
I believe the average rate these days (Nov 2018) is on the order of 3 Gbps (though large scale attacks can easily go up to 100 Gbps). One note, TCP SYN floods are a fairly uncommon vector these days. UDP floods are much more common.
add a comment |Â
up vote
2
down vote
I believe the average rate these days (Nov 2018) is on the order of 3 Gbps (though large scale attacks can easily go up to 100 Gbps). One note, TCP SYN floods are a fairly uncommon vector these days. UDP floods are much more common.
add a comment |Â
up vote
2
down vote
up vote
2
down vote
I believe the average rate these days (Nov 2018) is on the order of 3 Gbps (though large scale attacks can easily go up to 100 Gbps). One note, TCP SYN floods are a fairly uncommon vector these days. UDP floods are much more common.
I believe the average rate these days (Nov 2018) is on the order of 3 Gbps (though large scale attacks can easily go up to 100 Gbps). One note, TCP SYN floods are a fairly uncommon vector these days. UDP floods are much more common.
answered 1 hour ago
DarkMatter
3816
3816
add a comment |Â
add a comment |Â
up vote
2
down vote
Nowadays TCP SYN attacks are not common, focus more on UDP amplification attacks over DNS, memcache and other UDP services. On the other hand, if you want to compute the traffic rate you can use the formula, IP header (20 bytes) + TCP header (20/32) bytes per packet, so is easy to know how many packets per second you need to send if you want a 1GB for example.
add a comment |Â
up vote
2
down vote
Nowadays TCP SYN attacks are not common, focus more on UDP amplification attacks over DNS, memcache and other UDP services. On the other hand, if you want to compute the traffic rate you can use the formula, IP header (20 bytes) + TCP header (20/32) bytes per packet, so is easy to know how many packets per second you need to send if you want a 1GB for example.
add a comment |Â
up vote
2
down vote
up vote
2
down vote
Nowadays TCP SYN attacks are not common, focus more on UDP amplification attacks over DNS, memcache and other UDP services. On the other hand, if you want to compute the traffic rate you can use the formula, IP header (20 bytes) + TCP header (20/32) bytes per packet, so is easy to know how many packets per second you need to send if you want a 1GB for example.
Nowadays TCP SYN attacks are not common, focus more on UDP amplification attacks over DNS, memcache and other UDP services. On the other hand, if you want to compute the traffic rate you can use the formula, IP header (20 bytes) + TCP header (20/32) bytes per packet, so is easy to know how many packets per second you need to send if you want a 1GB for example.
answered 44 mins ago
camp0
38524
38524
add a comment |Â
add a comment |Â
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f196853%2fthreshold-for-ddos-attack%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password