This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

DDOS attack

bdillard
Contributor II

‎04-17-2024 10:52 AM

Hello,

Recently we've seen some real slow downs on our network.   It turns out according to the netgear the ruckus APs are attached to something similar to a DDOS attack is occuring on the ports connected to our APs.

 

Is there a way to find the mac address on the Ruckus units that is causing the issue so we can block it?

0 Kudos
3 REPLIES 3

abilashpr
Contributor III

‎04-18-2024 11:06 PM

Dear @bdillard ,

Best source, is to do a packet capture on wired or wireless interface and you should be able to find the source of DDOS attack.

Regards,

Abilash

0 Kudos

bdillard
Contributor II
In response to abilashpr

‎04-25-2024 06:29 PM

Thanks, all of these locations are remote so it will take a while to get it set up (plus I need to brush up on my Spanish for one of them)

0 Kudos

GiulSteinauer
New Contributor

‎05-05-2025 02:14 AM - edited ‎05-07-2025 02:54 AM

I had a similar issue and found out it was caused by traffic generated through a Stresser tool aimed at random ports on my network. What helped was setting stricter firewall rules and temporarily geoblocking countries I don't interact with. Also noticed my logs filled up fast, so I set automated log rotation to keep things running smoother.

0 Kudos
Copyright © 2025 Khoros, LLC
li.common.scroll-to.top

Type a product name