Distributed Denial of Service Attacks or DDoS is quite popular these days and it’s not hard to guess the the name of the originating country – China/Hong Kong tops the list of the attackers. Huh!
It has been a long time I’m working with mikrotik devices. So, it is not anything new for me. Guess what I faced DDoS first time in my home network. Trust me, it took my whole network down in minutes. So, just imagine what would happen to an enterprise network! Anyways, if you need to know more about it just google it and you will find a whole lot of article on it.
So, whenever you are configuring your mikrotik router for the first time it’s better if you configure the filter rules to prevent the attacks – “Prevention is better than cure!”
- Full WAN uplink bandwidth utilisation even if no clients are connected to your router.
- Extremely high latency.
- Several unknown IPs connected to your router’s public IP. [See this from the torch option and sort by Rx/Tx]
- If you are curious enough and do some IP lookups you can see those IPs are of mainly CHINANET network. Beware!!