[175935] in North American Network Operators' Group
Re: DDOS, IDS, RTBH, and Rate limiting
daemon@ATHENA.MIT.EDU (Miles Fidelman)
Sat Nov 8 20:23:26 2014
X-Original-To: nanog@nanog.org
Date: Sat, 08 Nov 2014 20:23:09 -0500
From: Miles Fidelman <mfidelman@meetinghouse.net>
To: "NANOG (nanog@nanog.org)" <nanog@nanog.org>
In-Reply-To: <DC85D08B84BB854086E9524DAB67D1871613B320@Teriwood.miller.local>
Errors-To: nanog-bounces@nanog.org
Eric C. Miller wrote:
> Today, we experienced (3) separate DDoS attacks from Eastern Asia, all generating > 2Gbps towards a single IP address in our network. All 3 attacks targeted different IP addresses with dst UDP 19, and the attacks lasted for about 5 minutes and stopped as fast as they started.
>
> Does anyone have any suggestions for mitigating these type of attacks?
>
The phrase automated offensive cyber counter-attack has been coming to
mind rather frequently, of late. I wonder if DARPA might fund some work
in this area. :-)
--
In theory, there is no difference between theory and practice.
In practice, there is. .... Yogi Berra
