Getting multiple DDOS attack alerts from endpoints - network is cut off for a time
Article ID: 231887
Getting multiple DDOS attack to different endpoints in the environment. The alert causes the network to be blocked for a time.
Release : 14.3 RU2
Component : Default-Sym
It was found that a large number of packets were being received out of order.
The product is working as designed since packets are coming out of order. Options are to:
- Have the network team figure out why valid network data streams are getting scrambled
- Disable DOS to avoid the issue.