[15343] in North American Network Operators' Group
Re: Smurfing
daemon@ATHENA.MIT.EDU (Steve Hultquist)
Fri Feb 13 17:27:16 1998
Date: Fri, 13 Feb 1998 13:46:41 -0700
From: "Steve Hultquist" <ssh@HSAnet.net>
To: nanog@merit.edu
X-Licensed-To: Unlicensed - for evaluation only
Don't these answers answer a different question? Isn't the question how to
filter *outbound* attacks, not inbound ones? Filtering the inbound ones is
pretty easy on a Bay or anything with filters (drop packets bound for the
broadcast addresses). Filtering outbound is another story, especially with
CIDR. I would like to set up my routers to make sure I'm protecting as much
of the 'net as possible from attempts by my customers to do evil. However,
it's not clear to me how to do that. Does "no ip directed-broadcast" somehow
filter the *outbound* attacks or just the inbound ones?
--
Steve Hultquist, Chief Technology Officer HSAnet
providing high-speed Internet access Boulder, Colorado
mailto:ssh@HSAnet.net +1.303.581.0800 http://www.HSAnet.net/
