An Internet Protocol (IP) fragmentation attack is a standard form of volumetric denial of service (DoS) attack. A denial-of-service (DoS) is any type of attack where the attackers try to stop genuine online users from accessing the service. During an IP fragmentation attack, datagram fragmentation mechanisms are used for crushing the network.
IP fragmentation takes place when IP datagrams are smashed into small packets. The broken packets are then sent across a network, where they are reconstructed into the original datagram as part of regular online communications.
This entire process is essential to meet the size parameters each network can withstand. This size limit is defined as a maximum transmission unit (MTU).
The purpose of an IP fragmentation attack is to thwart services or deactivate devices. There are numerous types of IP fragmentation attacks.
IP fragmentation attacks comprise of dispersing datagrams with the intention of difficult reassembly once they’re received. The attack cripples a server, preventing it from operating as it should.
Here are some of the most common IP fragmentation attacks:
Here are the ways you can reduce the threat of an IP fragmentation attack: