[23952] in North American Network Operators' Group
Re: Smurf tone down
daemon@ATHENA.MIT.EDU (Dan Hollis)
Sat May 1 03:22:20 1999
Date: Sat, 1 May 1999 00:21:05 -0700 (PDT)
From: Dan Hollis <goemon@sasami.anime.net>
To: Joe Shaw <jshaw@insync.net>
Cc: alex@nac.net, nanog@merit.edu
In-Reply-To: <Pine.SOL.4.10.9905010133570.5474-100000@vellocet.insync.net>
Errors-To: owner-nanog-outgoing@merit.edu
On Sat, 1 May 1999, Joe Shaw wrote:
> After dealing with UUNet security regarding several smurf incidents I
> asked them this same question. Their response (and I'm sure it would be
> the same response of others) was that a lot of the routers on their
> network couldn't handle the load of using CEF-CAR to limit smurf attacks.
The explanation I got from uunet regarding smurf attacks and why they
dont shut down their smurf amplifiers when notified repeatedly about
them, is that their ascend tnt's dont support icmp filtering.
-Dan
