[174547] in North American Network Operators' Group
Re: upstream support for flowspec
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Thu Sep 18 14:12:23 2014
X-Original-To: nanog@nanog.org
In-Reply-To: <ygfbnqcbyrz.fsf@corbe.net>
Date: Thu, 18 Sep 2014 14:12:15 -0400
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Daniel Corbe <corbe@corbe.net>
Cc: nanog list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
On Thu, Sep 18, 2014 at 1:53 PM, Daniel Corbe <corbe@corbe.net> wrote:
> And once that happens, what are the chances of services providers
> adopting this for their customers to make use of on as wide of a scale
> as (for example) blackhole community strings.
>
> I'd certainly *love* to have a way to mitigate an attack that doesn't
> involve me sacrificing one service on my network to save the rest.
there are providers (verizon business, att, sprint, ntt at least) that
provide mitigation via bgp update... which is equivalent to the
blackhole community stuff, why not investigate those options? (or if
you had, what was lacking?)
