Ping Sweep Caused DOS on PCN Firewall

Event Year: 2005 Reliability: Confirmed
Country: United Kingdom
Industry Type: Petroleum

An open rulebase on a PCN firewall allowed a ping sweep from an external network onto the PCN to use up all available licenses on the PCN firewall. This meant the firewall denied connectivity to genuine process related traffic into the PCN.


Manual procedures used to obtain remote data feed information into PCN.

Action Description: Restrict firewall rulebase to remove open rules allowing generic ping access to large numbers of internal hosts.