Petri Helenius wrote:
There is also a lot of "background Internet radiation" coming from p2p applications which seem to remember their peers for a week or two. These usually account for most of the unidirectional traffic knocking on doors unanswered. (not counting large DDoS).
Martian packets, idiots who configure non rfc1918 ips into their LANs and then leak these out to the world, random spoofed source address traffic and/or DDoS traffic as you say (insert bcp 38 thread here) - all far more common than they ought to be. But junk p2p applications written by people who can read /. far better than they can code, and who will be first up against the wall when the coding revolution begins, is definitely the major factor. -- suresh ramasubramanian suresh@outblaze.com gpg EDEDEFB9 manager, security and antispam operations, outblaze ltd