Hi there,
we have a customer that has some kind of broken PPPoE-Client.
The problem is, that his router is flooding our MT Box with several PPPoE-Login/Logout’s Sessions.
There are about 10 new Sessions per Second, resulting in 100% CPU usage and a lot of memory usage.
Can i somehow add a delay in PPPoE-Server?
Or anything else i can do to prevent that.
I already have “One session per host” active.
I have some problem…
Can someone from mikrotik explain this. Is it something that can be done for prevention? Only reboot helps after this and that’s not good.
You can use 3.0rc6 there is improved pppoe server functionality that will help in your case.
So where is this function to prevent this kind of flood? I installed rc10 on a testmachine and didnt find anything.
Why not add a firewall rule to throw away the PPPoE frames from his routers MAC address?
up…
any solutions for this problem?
You can run PPPOE server on bridge interface. This will allow you to use bridge filters where you can successfully drop or limit pppoe discovery packets.
Can you explain me how could I imitate number of PPPoE connections in bridge filter?
Thanks
As posted, add the interface to a bridge, then use the bridge filters to limit the PPPoE discovery packets
Second, v3 should only allow 50 attempts at any given time. This is a OS feature, not a “software” swtich that you can change in v3.