[156810] in North American Network Operators' Group
really nasty attacks
daemon@ATHENA.MIT.EDU (Miguel Mata)
Thu Sep 27 10:56:22 2012
From: "Miguel Mata" <mmata@intercom.com.sv>
To: nanog@nanog.org
Date: Thu, 27 Sep 2012 08:55:58 -0600
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Guys,
on recent days I've seen an UDP attack a couple of times. The attack is fairly simple, a full
load of UDP packets filled with "X". The attacks comes from various sites from the other side
of the pond (46.165.197.xx, 213.152.180.yy).
Has anyone seen this kind of attack? Basically, the attack aims to fill your pipe (150Mbps
over an STM1... guess what...) Then the question goes like this: besides asking your
upstream provider to block, drop or whatever on the offending traffic, and Kontaktieren Sie
den Administrator, what else can be done?
Thanks in advance for any help you can provide.
Please contact me off list. I'll post a recap on due time.
--
Miguel Mata
Gerente de Operaciones
Comunicaciones IBW El Salvador
tel.: ++(503) 2278-5068
fax: ++(503) 2207-1310
mmata@ibw.com
"La confianza es la mejor conexion"
