[133567] in North American Network Operators' Group
Re: Over a decade of DDOS--any progress yet?
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Mon Dec 13 10:13:28 2010
In-Reply-To: <F3318834F1F89D46857972DD4B411D70019C4767E5@EXCHANGE.thenap.com>
Date: Mon, 13 Dec 2010 10:11:13 -0500
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Drew Weaver <drew.weaver@thenap.com>
Cc: Jeffrey Lyon <jeffrey.lyon@blacklotus.net>,
North American Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Mon, Dec 13, 2010 at 8:52 AM, Drew Weaver <drew.weaver@thenap.com> wrote:
> I'm certain there are thresholds to that. Carrier grade mitigation
> solutions will start low and ramp up to 5, 6, 7, etc. figures
> depending on the attack and amount of bandwidth to be filtered among
> other variables.
>
>>>>
>
> My point was, if you "mitigate" the attack vs. null routing the target you have to pay for the transit that the attack consumes between your network and the upstream network(s).
>
so... with a carrier managed solution (or the one ATT/Sprint/VZB sold)
the transit of the attack happens inside their networks and isn't
charged to the end-customer (the destination, obviously contributing
customers get charged :) )
-chris
