Fragment flood attack

Question

What is a Fragment Flood Attack. McAfee Firewall detects and displays this message continuously while computer is on, even if not on internet. Have Cox as IP.

Answer

This question was answered on May 10, 2003. Much of the information contained herein may have changed since posting.

A fragment in the computer language is known as an IP packet This message you are getting comes from the user datagram protocol(UDP) flood denial-of-service attack links two systems.By spoofing, the UDP flood attack hooks up one system's UDP character generating service, chargen, which generates a series of characters for each packet it receives, with another system's UDP echo service (which echoes any character it receives) Once the link is made, the two systems are tied up exchanging a flood of meaningless data.

To prevent this, you can either disable all UDP services on each host in your network This is not really a good solution though, a better solution is to have your firewall filter all incoming UDP service requests Since UDP services are designed for internal diagnostics, you could probably get by with denying UDP service access from the internet community.

Need Help with this Issue?

We help people with technology! It's what we do.
Schedule an Appointment with a location for help!

Author

Posted by Student of Katharine Gibbs School - New York on May 10, 2003