|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |
X-Original-To: nanog@nanog.org Date: Sun, 11 Jan 2015 16:07:18 +0100 From: Job Snijders <job@instituut.net> To: Roland Dobbins <rdobbins@arbor.net> In-Reply-To: <5A6E09C5-ED1C-4DB5-9E48-74F54D5C5131@arbor.net> Cc: NANOG list <nanog@nanog.org> Errors-To: nanog-bounces@nanog.org On Sun, Jan 11, 2015 at 09:58:12PM +0700, Roland Dobbins wrote: >> 2. Protect yourself by having your upstream police Police UDP to some >> baseline you are comfortable with. > > This will come back to haunt you, when the programmatically-generated > attack traffic 'crowds out' the legitimate traffic and everything > breaks. > > You can only really do this for ntp. You can also consider adding CHARGEN and SSDP. Kind regards, Job
|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |