[119083] in North American Network Operators' Group
Re: Pros and Cons of Cloud Computing in dealing with DDoS
daemon@ATHENA.MIT.EDU (Florian Weimer)
Fri Nov 6 04:56:04 2009
To: "Stefan Fouant" <sfouant@shortestpathfirst.com>
From: Florian Weimer <fweimer@bfk.de>
Date: Fri, 06 Nov 2009 09:55:24 +0000
In-Reply-To: <003901ca5e81$65b9ada0$312d08e0$@com> (Stefan Fouant's message of
"Thu\, 5 Nov 2009 20\:35\:17 -0500")
Cc: 'NANOG list' <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
* Stefan Fouant:
> Which is why vendors selling DDoS mitigation equipment will always tell y=
ou
> to get a 15lb. bag first. ;) Their solutions work, but only if you got a
> bag big enough to store a lot of crap.
Not all attacks involve saturated pipes.
There used to be anti-DDoS vendors whose boxes didn't even have WAN
links. Part of the problem is that operating systems come with TCP
stacks and web servers which are not very robust, so it's pretty easy
to create something which behaves spectacularly better under certain
attacks.
--=20
Florian Weimer <fweimer@bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstra=DFe 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
