When transmitting data packets over the Internet, a time span is associated with them to prevent them from circulating indefinitely in the network system. Defining the amount of time—also known as hops—of a data packet is known as the time to live (TTL), an essential component of an IPv4 header.
Note: To read more about TTL, click here.
An IPv4 header contains essential information about IP packets. This includes the source and destination address of the data packet, packet length, flags, checksum, and so on.
It is a single byte field filled by the send and can hold values from 0 to 255. The IPv4 header looks like the following:
When a data packet is transmitted, every router between the source and destination decreases the TTL value by 1 while forwarding it to the next location.
As soon as the value of TTL reaches 0, the data packet is discarded and an
Cybercriminals can adversely affect the CPU load using a TTL expiry attack. The process can be described as follows:
To identify and mitigate TTL expiry attacks, apply filtering on data packets with low TTL values. The following help in filtering out data packets: