This is similar to my post earlier this year but this attack didn't take down our entire internet, just one of the web servers. The top 10 list part of the Daily Executive Report did not include anything out of the ordinary and neither did the web access logs on the web server. I am wondering if it is another kind of attack like ping or another kind of packet that will take down a web server but not log the request.
Is there any way I can dig into the logs and find out exactly what happened at this time last night? Or is there any kind of setting that can prevent this?
This thread was automatically locked due to age.
