Upgrade to the great firewall of China is a chain reaction on the Internet, seemingly random sites experiencing massive traffic spikes.
A Web site owner, in North Carolina, Craig · Huo Kenbo, documented how to investigate why his mail Server shut down, he found 52Mbps search traffic piling into the system: 13,000 requests per second, or about one-third of Google’s search traffic.
Mail entered at howHockenberry try to process the request, all from China, and many tried to find Bittorrents or reach Facebook, serial explosions in some detail. Short version: he blocked all Chinese IP blocks.
Hockenbury is not just one request, and flash floods. There have been numerous reports of system administrators find that their IP address has appeared in front of the headlights of the statue of China’s censorship, leading them to fall, forcing them to take blocking measures to get back online.
A number of different theories on what happened when, including centralized DDoS attacks and “foreign hacks”–that suggested that China itself–technology community’s overall conclusion that a bug has been introduced into China’s firewall. In particular, it would have been wrong to use DNS cache poisoning redirects users to leave the site, and the Government does not want them to see.
China’s weak link using the DNS system to intercept request to enter and leave the country. If it turns out to be like – for example the “Facebook.com” or “Twitter.com”-it weighs the request was directed to a different IP address.
Long Chinese simply sends these requests into the ether–or to the IP address that does not exist, there is effect of causing a timeout request. However, in order to analyze the more traffic, the country has begun to send the request to use the actual IP address of the server.
It is unfortunate, it seems to have some configuration errors and incorrect IP addresses have been entered. When an error number means the server on the other side of the world suddenly gets hit with millions of Chinese users request information streams, then … … The server fell over.
Situation in China’s broader impact. Tens of millions of users can access the site, and the Government is eager to solve the problem. According to national defense in a vendor, qihoo 360 two-thirds’s Chinese Web site caught in the chaos.
Chinese experts are beginning to point to the DNS infrastructure systems outside of the unidentified attacks. “The industry as a whole needs to give more attention to prevent DNS-related attacks and strong,” Executive Director Li Xiaodong said China Internet network information center, China.
However, the reality is that China has efforts to reconfigure the domain name system to meet the political objectives of basic flaws. The network aims to widely distributed in and around the obstacles of effective communication routes.
By setting itself more and more – as a bottleneck and bottleneck, as more and more Chinese users access online-the Government of China, which makes the single points of failure. The slightest error will explode the traffic of its configuration in an uncertain direction and cut off its own users from the Internet.
For years, experts have been warning about the Internet, “balkanization” local governments exert greater and greater constraints, within its borders, and effectively end up breaking up the global Internet. What not to include much detail is the countries ‘ own shortcomings, if they try to control their users demand, but made a mistake.
Source: http://tech789.com/great-firewall-of-china-explosion-ddos-attacking-random-ip-addresses/