TCP SYN Flooding and IP Spoofing on my Security Log

[DealsandSqueals]

I'm getting this info from my Belkin routers Security Log:

2003/11/29 16:54:55 ** TCP SYN Flooding ** <IP/TCP> "IP" ->> "IP"
2003/12/03 09:14:47 ** IP Spoofing ** <IP/ICMP> "
2003/12/09 03:57:01 ** IP Spoofing ** <IP/ICMP> "
2003/12/13 00:16:50 ** TCP SYN Flooding ** <IP/TCP> "
2003/12/13 14:23:13 ** IP Spoofing ** <IP/ICMP> "
2003/12/16 00:58:23 ** IP Spoofing ** <IP/ICMP> "
2003/12/16 15:28:30 ** IP Spoofing ** <IP/ICMP> "
2003/12/18 03:46:55 ** IP Spoofing ** <IP/ICMP> "
2003/12/18 10:46:32 ** IP Spoofing ** <IP/ICMP> "
2003/12/19 23:22:07 ** IP Spoofing ** <IP/ICMP> "
2003/12/20 11:57:29 ** IP Spoofing ** <IP/ICMP> "

What's this all mean? Is someone hacking into my router, system, network, etc.? Are they sucessful?

 

[n0cmonkey]

Success isn't possible to tell from these logs. TCP SYN Floods are a Denial of Service. These logs suck.

 

[gunrunnerjohn]

The fact that they logged it probably means it wasn't successful. If it were successful they most likely wouldn't notice! :Q

 

[tjmaxz]

Actually I'm using a Dlink 614+ router and I'm seeing those logs as well.
One think I noticed though, it logs Spoofing whenever there is a computer starting up and requesting a DHCP address.
And for TCP SYN flooding, I get that whenever someone on the network is running P2P service (like edonkey).

 

[Boscoh]

I see this type of stuff on one of the routers at one of my sites all the time where I do filtering before stuff hits the firewall. It's nothing I really worried about. Just be glad your firewall is blocking it. I started getting so much of this type of traffic that it started accounting for about 10-15% of my router's CPU time and about 10% of my bandwidth. Finally called my ISP and asked them to do some filtering on their side to clear the traffic off my line...