ISA SERVER Detected A Possible Land Attack

AIS Monitoring Platform has observed an land attack was attempted against a computer protected by ISA Server. This alert occurs when a Transmission Control Protocol (TCP) SYN packet or User Datagram Protocol (UDP) packet is sent with a spoofed source Internet Protocol (IP) address and port number that is identical to that of the destination IP address and port. The effect of this makes it appear that the host computer has sent a packet to itself. If this attack is successful, then a loop is created and the computer crashes.

Last modified April 17, 2020