One week in on a 100/100 Crystal Web connection and I find myself under attack by a botnet:
Earlier this was 25Mb/s but has since dropped to 5Mb/s.
With the higher speed connections is it not in the ISP's best interest to start actively mitigating these attacks. Most home users are not going to even realise that this traffic is incoming so it just continues to use up resources (and might lead to support calls).
Thoughts?
(P.S. CrystalWeb please answer your phone or respond to my ticket. I need you to kill this)
Code:
Aug 9 11:34:34 WAN 5.189.168.235:43562 196.212.x.x:58649 TCP:S
Aug 9 11:34:34 WAN 91.205.173.12:43549 196.212.x.x:35548 TCP:S
Aug 9 11:34:34 WAN 5.189.168.39:43562 196.212.x.x:11877 TCP:S
Aug 9 11:34:34 WAN 91.205.173.28:43549 196.212.x.x:37135 TCP:S
Aug 9 11:34:34 WAN 178.238.229.191:43515 196.212.x.x:29749 TCP:S
Aug 9 11:34:34 WAN 91.205.173.212:43549 196.212.x.x:9277 TCP:S
Aug 9 11:34:34 WAN 178.238.229.80:43515 196.212.x.x:47846 TCP:S
Aug 9 11:34:34 WAN 91.205.173.202:43549 196.212.x.x:6735 TCP:S
Aug 9 11:34:34 WAN 178.238.229.226:43515 196.212.x.x:2631 TCP:S
Aug 9 11:34:34 WAN 178.238.229.69:43515 196.212.x.x:28466 TCP:S
Aug 9 11:34:34 WAN 5.189.168.246:43562 196.212.x.x:15631 TCP:S
Aug 9 11:34:34 WAN 5.189.168.28:43562 196.212.x.x:16797 TCP:S
Aug 9 11:34:34 WAN 91.205.173.32:43549 196.212.x.x:3283 TCP:S
Aug 9 11:34:34 WAN 91.205.173.204:43549 196.212.x.x:12503 TCP:S
Aug 9 11:34:34 WAN 5.189.174.42:43542 196.212.x.x:41626 TCP:S
Aug 9 11:34:34 WAN 5.189.168.26:43562 196.212.x.x:55586 TCP:S
Aug 9 11:34:34 WAN 5.189.168.99:43562 196.212.x.x:11943 TCP:SEarlier this was 25Mb/s but has since dropped to 5Mb/s.
With the higher speed connections is it not in the ISP's best interest to start actively mitigating these attacks. Most home users are not going to even realise that this traffic is incoming so it just continues to use up resources (and might lead to support calls).
Thoughts?
(P.S. CrystalWeb please answer your phone or respond to my ticket. I need you to kill this)
