[187062] in North American Network Operators' Group
Re: de-peering for security sake
daemon@ATHENA.MIT.EDU (Ca By)
Sun Jan 17 16:32:48 2016
X-Original-To: nanog@nanog.org
In-Reply-To: <Pine.LNX.4.64.1601171302390.19094@yuri.anime.net>
Date: Sun, 17 Jan 2016 13:32:44 -0800
From: Ca By <cb.list6@gmail.com>
To: Dan Hollis <goemon@sasami.anime.net>
Cc: NANOG list <nanog@nanog.org>, "bzs@theworld.com" <bzs@theworld.com>
Errors-To: nanog-bounces@nanog.org
On Sunday, January 17, 2016, Dan Hollis <goemon@sasami.anime.net> wrote:
> On Sun, 17 Jan 2016, bzs@theworld.com wrote:
>
>> Sure, you have your hands on BGP etc, so what router commands (hammer)
>> can effect international policy (nail)?
>>
>> This is fundamentally a social and political issue and needs to be
>> dealt with on that level, not with changes in router configs.
>>
>
> bgp blackhole fed by rbl?
>
> at the very least, scavenger queue packets by rbl.
>
>
If you are not already scoring packets by reputation, you are at very least
behind what AWS is doing for volumetric ddos mitigation
Check out around minute 12 and 13
http://youtu.be/Ys0gG1koqJA
As stated earlier, ip packets are going the way of spam mail :(
complacency / willful negligence needs to have a monetary cost.
>
> -Dan
>
