[172044] in North American Network Operators' Group
Re: Large DDoS, small extortion
daemon@ATHENA.MIT.EDU (Roland Dobbins)
Thu May 22 10:57:56 2014
X-Original-To: nanog@nanog.org
From: Roland Dobbins <rdobbins@arbor.net>
In-Reply-To: <CAN-S6ZqtwxcjGudh8Q+bW5u=7WEvz5Jn4Tdk-MmQ1u-9QHXhig@mail.gmail.com>
Date: Thu, 22 May 2014 21:57:39 +0700
To: "nanog@nanog.org list" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
On May 22, 2014, at 11:51 AM, Beleaguered Admin =
<dealing.with.ddos@gmail.com> wrote:
> While we are interested in technical means to mitigate the attacks =
(the syn and syn/acks are brutal, all cores pegged on multicore 10G nic =
servers just dealing with interrupts),
Here's how to get started:
<http://mailman.nanog.org/pipermail/nanog/2010-January/016747.html>
Ensure you have flow telemetry enabled at all your edges; there are =
open-source tools like nfsen/nfdump that you can get started with =
quickly.
----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Equo ne credite, Teucri.
-- Laoco=F6n
