[112510] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: DPI or Flow Management

daemon@ATHENA.MIT.EDU (Roland Dobbins)
Sun Mar 1 20:18:02 2009

From: Roland Dobbins <rdobbins@cisco.com>
To: NANOG list <nanog@nanog.org>
In-Reply-To: <6EC25EF1-FC08-490D-BDCC-4699464AA82F@cisco.com>
Date: Mon, 2 Mar 2009 09:17:47 +0800
Errors-To: nanog-bounces@nanog.org

On Mar 2, 2009, at 9:10 AM, Roland Dobbins wrote:

> With regards to DDoS mitigation, it's sometimes necessary to go  
> above layers-3/-4 in the event of layer-7-targeted attacks.

In fact, it's sometimes important to have the ability to parse packet  
payloads and/or interact with traffic in some layer-3/layer-4 attacks,  
depending upon the type of traffic, source distribution, legitimate  
proxy intermediaries, spoofed vs. non-spoofed, and so forth.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins@cisco.com> // +852.9133.2844 mobile

   Some things are just too precious to entrust to computers.

		   -- Seth Hanford


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[112510] in North American Network Operators' Group

Re: DPI or Flow Management

daemon@ATHENA.MIT.EDU (Roland Dobbins)Sun Mar 1 20:18:02 2009

daemon@ATHENA.MIT.EDU (Roland Dobbins)
Sun Mar 1 20:18:02 2009