WallWatcher shows my router getting pounded

Discussion in 'HyperWRT Firmware' started by jeff1132, Nov 26, 2004.

  1. jeff1132

    jeff1132 Network Guru Member

    I installed WallWatcher after reading other posts in this forum. It works great, but it appears my IP is getting pounded with UDP packets to the end that my 5MB log limit gets hit in under a day. Of course the packet has a spoofed source address....any recommendations on what to do? I think this kind of pounding is making my router unstable (my 2 Thinkpads lose their connection a lot).

    Here's todays entry showing the attack vector...

    WallReViewer - 60-day history of last 2 days of Inbound Remote IP Addrs - as of 11/26/2004 9:51:51 AM Central Standard Time (Timestamps are Local Time)
    First Last Dir Prot Rem IP Addr Remote Name R Port Lcl IP Addr L Port Freq
    11/25 00:1:11.07 11/26 09:4:45.85 I udp 67 68 30070
  2. 4Access

    4Access Network Guru Member

    Interesting, that appears to be DHCP traffic... Are you sure you have your router configured properly for your ISP? You're not using PPPoE with a Connect on Demand: Max Idle Time of 1 minute are you? (Even if that were the case it shouldn't generate that much traffic so I don't know what to think.) But the fact that you are having a hard time maintain your internet connection suggests something isn't set up right... Or maybe a bug in Hyper? I'd consider resetting to defaults and setting up your router again. Maybe even reflashing your firmware or trying another one just for testing purposes.

    Good Luck.
  3. jeff1132

    jeff1132 Network Guru Member

    I actually use DHCP with a cable modem...no special PPPoE or anything. Right now I'm thinking of emailing my ISP to ask for them to investigate or to tell me how to get a different IP (I don't know if I'm the only one getting these UDPs). I am signed up with dyndns.org, so someone may be finding me that way...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice