Identifying type of DOS attacks?

Peter Helmenstine pete at
Thu Jan 22 17:24:41 UTC 1998

How do most of you identify the latest type of DOS attack of the week? I
know that some are usually more obvious than others and if you have
exhisting filters it helps to narrow down some problems but other than
seeing that ping times are in seconds the seconds and noticing that your
pipe is hosed, how does one determine that it's a DOS attack when it's
happening rather than say a bad piece of hardware. Is there anything
that you all look for in particular. Does DOS Tracker tell you the type of
attack that is being used? Other monitoring tools?


--------------------- Peter Helmenstine ---------------------------
WWW: E-mailto:pete at
      UofO Computing Center, Eugene, Or 97403 (541) 346-1629

More information about the NANOG mailing list