Open Access  Subscription or Fee Access

In this paper we have discussed about what is DDOS the latest kind of threat to various important servers in an enterprise and how to remove it. DDOS is a kind of complex attack from anywhere else mainly from internet so that a network, a server, group of servers can be made halted. In this way the business of an enterprise can be easily targeted. We have performed a lot of work on all the network services by carrying out a lot of study on all these services after their configuration, testing, security, firewalling them, their network diagnostic, their network statistics, search of free open source tools to find attacks, types of attacks, TCP/IP attacks, various kinds of TCP/IP attacks, developments of network scripts to stop these attacks. Our work mainly focuss on the above study analysis of a network for services like SMTP, FTP, POP, IMAP, DNS, HTTP, databases, domain services etc and the security, and the attacks on these services and their removal. In-built firewalls, free open source firewalls can be safely used to prevent these attacks.

DDOS, Attacks

Daemon9, route, infinity, IP-Spoofing Demystified, Phreak Magazine, Vol. 7, Issue 48, File 14 (1996).

R. T. Morris, A Weakness in the 4.2BSD UNIX TCP/IP Software,Computing Science Technical Report 117, AT&T Laboratories (1985).

V. Paxson, S. Floyd, Wide-Area Traffic: The Failure of Poisson Modeling,IEEE/ACM Transactions on Networking, 3 (3) (1994) pp. 226--244.

V. Paxson, S. Floyd, Why We Don’t Know How to Simulate The Internet, Proceedings of the 1997 Winter Simulation Conference, Atlanta, GA (1997).

P. A. Porras, A. Valdes, Live Traffic Analysis of TCP/IP Gateways,Proceedings of the Internet Society Symposium on Network and Distributed System Security (March 1998).

J. Postel, editor, Internet Protocol, RFC791 (1981).

J. Postel, editor, Tranmission Control Protocol, RFC793 (1981).

C. L. Schuba et al, Analysis of a Denial of Service Attack on TCP, IEEE Symposium on Security and Privacy (1997).

W. R. Stevens, TCP/IP Illustrated, Volume 1, The Protocols , Professional Computing Series, Addison Wesley (1994).

W. R. Stevens, TCP/IP Illustrated, Volume 3, TCP for Transactions, HTTP,NNTP, and the UNIX Domain Protocols, Professional Computing Series,Addison Wesley (1994).

Computer Emergency Response Team, TCP SYN Flooding and IP Spoofing Attacks, CERT Advisory: CA 96-21 (September 1996).

C.P.S.T. Ltd., TCP SYN Flooding Attack and the Firewall-1 SYNDefender(October 1996).

L. S. Laboratories, Livermore Software Lab. Announces Defense against SYN Flooding Attacks (October 1996).

SUN Microsystems, SUN’s TCP SYN Flooding Solutions, SUN Microsystems Security Bulletin: #00136 (October 1996).

D. Mills, Internet Delay Experiments, RFC 889 (1983).

Internet Traffic Archive, data available at URL: http://ita.ee.lbl.gov