Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1271
Views
0
Helpful
1
Replies

Http Flood Attack

Shaiz
Level 1
Level 1

‎11-01-2018 06:12 AM - edited ‎02-21-2020 08:25 AM

Dear reader/s,

                      I have been asked to investigate the attached. This seems like a http flood attack to me. Please correct me if i am wrong. I have enabled http inspect on the ASA under default global_policy. Can you please suggest what else should i do in order to prevent happening again? 

Many thanks

 

 

           

Preview file
43 KB
0 Helpful
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

‎11-02-2018 05:53 PM

192.168.200.73 - this looks like local IP address. investigate what is this device and why it generating http flood request on port 80 ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card