DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

DoS when having a VPN client (Draytek 2850 over VDSL)

  • jm_paulin
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
29 Jan 2013 09:49 #74988 by jm_paulin
DoS when having a VPN client (Draytek 2850 over VDSL) was created by jm_paulin
Hi,

One of our machine connects to a customer intranet using a dedicated AT&T VPN Client. We noticed that DoS where triggered on udp when that particular machine is downloading files from the customer intranet over the VPN. That was causing the connection to be very sluggish, and even drop.

I understand UDP is used by the AT&T VPN Client. So to work around the issue, I disabled the UDP flood defense in the DoS Setup age. But that concerns me. Is there a better way?

I am using a Draytek 2850 over VDSL (80/20)

Thanks

JM

Please Log in or Create an account to join the conversation.

More
29 Jan 2013 18:10 #75002 by voodle
Replied by voodle on topic Re: DoS when having a VPN client (Draytek 2850 over VDSL)
It's the best way, the UDP flood defense is an indiscriminate filter and the only other way you could do it is to increase the packet threshold on it to something huge like 10,000. It's not so necessary as it once was now that the session count is much higher on the routers anyway (I think).

Please Log in or Create an account to join the conversation.

  • jm_paulin
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
29 Jan 2013 18:33 #75004 by jm_paulin
Replied by jm_paulin on topic Re: DoS when having a VPN client (Draytek 2850 over VDSL)
Thx.

I guess I'll leave it like this for now...

JM

Please Log in or Create an account to join the conversation.

Moderators: Sami