[166398] in North American Network Operators' Group
Re: 80 Gbps ?
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Tue Oct 22 03:15:35 2013
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: "nanog@nanog.org list" <nanog@nanog.org>
Date: Tue, 22 Oct 2013 07:15:15 +0000
In-Reply-To: <CABL6YZRdDA3-sSaXBbjjvm1Z4eefqizAUngGF-gXfP0Hq4UeuQ@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Oct 22, 2013, at 8:19 AM, "jamie rishaw" <j@arpa.com> wrote:
> A) /Seriously/ ? 80 Gbps ?
100gb/sec+ DDoS attacks have been seen for the last 3 years or more - 80gb/=
sec isn't that rare, unfortunately. Most (but not all) of these very high-=
bandwidth DDoS attacks are DNS, SNMP, ntp, or game-server reflection/amplif=
ication attacks.
> B) Other than dropping routes / changing DNS and "filtering at the border=
s"
> are there controls that operators employ that help mitigate multi-Gbps
> attacks?
S/RTBH, shutting down links, cooperative multi-operator mitigation, BCP38/8=
4, etc.
---------------------------------
Roland Dobbins <rdobbins@arbor.net>
