IP Flood Detector is a derivative of an earlier project, DNS Flood Detector. It provides managers with an audit trail of TCP, UDP, and ICMP packet floods directed at Internet-facing servers. When packet rates exceed a specified threshold, IP Flood Detector will syslog the offending IP address, along with the associated protocol and traffic volume.
Flooding is a simple routing algorithm in which every incoming packet is sent through every outgoing link. Flooding can be costly in terms of wasted bandwidth and, as in the case of a Ping flood or a Denial of service attack, it can be harmful to the reliability of a computer network.