Hello,
I am sorry if this question has been asked before but i cannot find it!
I have a CCR1036-12G-4S router with OS6.
I have a switch and a couple of servers behind it that provide virtual machines to my customers.
I am advertising a /23 public subnet via BGP to my provider, set up on mikrotik.
The problem is with my customers IPs. Some of them get hacked or do it on purpose and start flooding random external IPs. In concequence, my ISP is dropping all my IP connections when a flood originates from one of the /23 subnet.
I tried talking to some of the clients to check what is wrong with their instances but not all know what to do.
How can i limit max packets per IP (egress)(i believe it is UDP traffic, but i may be wrong). I read that i could be achieved by simple or tree queues but so far i had no luck. I don’t quite understand all in the documentation about queues.(i’m not a network tech guy)
Any help on this matter would be greatly apreciated!
Thank you!