So someone found a bit of an exploit in my home network today, I was getting some erogenous UDP DNS requests that was maxing out the upstream of one of my internet connections. I was receiving about 300pps and the responses were huge, maxing out my upstream.
Turns out that my RouterOS router was answering DNS requests from external IP's. I find it odd that that was even allowed by default. Easily fixed and all, but correct me if I am wrong, responding to external IP's is normally disabled by default on just about all routers right?
Other thing, what the heck would someone target a home network with a DDoS attack that has no external services running?
Turns out that my RouterOS router was answering DNS requests from external IP's. I find it odd that that was even allowed by default. Easily fixed and all, but correct me if I am wrong, responding to external IP's is normally disabled by default on just about all routers right?
Other thing, what the heck would someone target a home network with a DDoS attack that has no external services running?