The Adtran community holiday season is starting next week! The holiday period will span from December 21, 2024 to January 6, 2025. During this time, responses to feedback form submissions may be delayed. If you are encountering product issues, you can reach out to Adtran support at any time.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
gilbert_aispuro
New Contributor II

Port Scan Bricks Router

Jump to solution

We currently have a security company that is testing our infrastructure using Nessus. Every time they run a test on our routers, (Total Access 930 and Netvanta 5560), they hit 100% CPU utilization, brick and our internet goes out.  I even tried to console into the router when its unresponsive and I get nothing but garbage text spewing out.  I've tried two different serial cables, tried every possible setting in the terminal and still nothing. After a I kill power to the appliance and it reboots, everything is restored and we have internet connectivity again.

Any reason this would happen? Is there anything I can do on my end to prevent this from happening? Any commands? Rate-limiting?

0 Kudos
1 Solution

Accepted Solutions

Re: Port Scan Bricks Router

Jump to solution

Found the issue. So I decided to debug when they were pen testing and I noticed that the pen-laptop ended up peering with my CenturyLink  BGP connection, essentially kicking the router peering off and removing all my routes. I believe next step would be to add a password on our peering. haha.

Wow, what a test.

View solution in original post

0 Kudos
2 Replies
Anonymous
Not applicable

Re: Port Scan Bricks Router

Jump to solution

It may have to do with to many FFE sessions or firewall session.  you can create some acls to limit packets to the Adtran  interface IP's from trusted sources like your management IP subnet .  if you are maxing out your FFE they can be increased as well as the firewall sessions.  If you are running the newer code you can see your ffe peak's.

Re: Port Scan Bricks Router

Jump to solution

Found the issue. So I decided to debug when they were pen testing and I noticed that the pen-laptop ended up peering with my CenturyLink  BGP connection, essentially kicking the router peering off and removing all my routes. I believe next step would be to add a password on our peering. haha.

Wow, what a test.

0 Kudos