Your routers are brain dead from the load.. routers that are used to handling a few thousand connections are being asked to handle 10's of thousands. 1 good 1000+ address scan from an ISDN user kills my Lucent/Ascend TNT unless we filter for it.
Hmmm, a 7206 should surely be able to handle more than 600 packets per second or am I wrong here? Our upstream E3 is currently used a maximum of 15Mbps and at peak time we see about 3000 pps on that link. If 20% of that is TCP RST packets, that would be 600 packets per second. And I'm sure somebody else on this list would be noticing this as well, especially with higher speed links. Blaz Zupan, Medinet d.o.o, Trzaska 85, SI-2000 Maribor, Slovenia E-mail: blaz@amis.net, Tel: +386-2-320-6320, Fax: +386-2-320-6325