Thanks to Dennis, Tammie, and Jeff for ideas, Things are stable and
working for now but I have cut off external access to my internal
At this point I am not sure if it is infected since some of the traffic
overload was sourced from that machine with an external destination so
I am thinking trojan or malware hijack scenarios.
Dennis- I did have ping disabled from the outside WAN into my LAN
Jeff, I did block the suspect IP address BUT there are probably more
waiting in the wings...
being a jack of all trades (master of none) and more of an integration
specialist than hardcore network administrator,,,,
I feel as though I should have trusted my gut about possibly leaving a
win2000 server screen door cracked open to portscanners,
automatedsniffers, pingers and the like.
Things on my internal network have been very stable since I moved to a
remote hosted web server and it only took a week for some virginia
lurker to overwhelm my sonic wall with 6000+ open connections.
I agree with Tammie, that those of us who are not hardwired
propellerheads, ( read... intimidated about switching one wrong switch)
yet still need to be managing firewalling traffic, would benefit
greatly from workshops, trainings.
This list and responses have been positive and helpful....and I would
like to find out how other schools maybe handling/screening traffic to
winnebago or other internal firewalled services, while managing to fend
off attacks from bad guys. I was and remain suspect that win2000 server
may be especially vulnerable being 5 years old but I am not an expert
with that os and am not ready to upgrade server software. Right now it
feels best to keep the gates and backdoors locked and not be hosting my
library card catalog until I know how to secure it.
On Feb 1, 2005, at 9:25 AM, Tammie Patten wrote:
> As I'm reading this thread about the denial of service attack, it
> to me that I, and many of the teacher-techies I know could benefit from
> some training in basic server management, networking for schools and
> security precautions. Are there any classes out there that you know of
> that are specifically geared to schools that you could recommend? Most
> us don't have time to become fully certified network types, but could
> really benefit from some basic understanding of what to look for, who
> call etc.
> Thoughts? Ideas?
> Tammie Patten
> Technology Integration Specialist
> Orange East Supervisory Union
> [log in to unmask]