[121846] in North American Network Operators' Group
Re: DDoS mitigation recommendations
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Thu Jan 28 11:55:59 2010
In-Reply-To: <16720fe01001280700x4d4a7379k750653900465941b@mail.gmail.com>
Date: Thu, 28 Jan 2010 11:55:34 -0500
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Jeffrey Lyon <jeffrey.lyon@blacklotus.net>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Thu, Jan 28, 2010 at 10:00 AM, Jeffrey Lyon
<jeffrey.lyon@blacklotus.net> wrote:
> IntruGuard is highly customizable both from the GUI and CLI with the
> engineer's assistance. Its the highest performance, reasonably priced box
> that we've tried so far.
'highest performance' =3D=3D 100mbps on a 1gbps copper interface? or
sessions setup/second? or remote-addresses tracked? or ?
-chris
>
> Jeff
>
> On Jan 28, 2010 7:02 AM, "Tom Sands" <tsands@rackspace.com> wrote:
>
>
>> -----Original Message-----
>> From: David Freedman [mailto:david.freedman@uk.clara.net] Sent: Tues...
> We've already done an initial trial with the Arbor device, and it does wo=
rk
> well. =A0Our biggest sticking point with it is that it lacks the granular
> level of visibility and control that we've been used to and often needed =
to
> tweak profiles. =A0Basically, it does what it's supposed to well, but you
> really can't tell what that is, and if it's not catching all of a DDoS yo=
u
> have little insight as to what's being missed or control to correct it.
>
>
>
> Thank you,
>
> Tom Sands
> Chief Network Engineer
> Rackspace
>
> Confidentiality Notice: This e-mail message (including any attached or
> embedded documents) is intend...
>
