[38243] in North American Network Operators' Group
Re: engineering --> ddos and flooding
daemon@ATHENA.MIT.EDU (Bill Woodcock)
Fri Jun 1 14:46:02 2001
Date: Fri, 1 Jun 2001 11:38:13 -0700 (PDT)
From: Bill Woodcock <woody@zocalo.net>
To: lucifer@lightbearer.com
Cc: nanog@merit.edu
In-Reply-To: <20010601182744.1138.qmail@prophecy.lightbearer.com>
Message-ID: <Pine.GSO.4.21.0106011136270.26100-100000@secure.zocalo.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
> > This of course kills all traffic...
> Including the BGP session, I would think, thus causing it to reset and
> drop the route, sending all the traffic back to the primary, which unfloods
> the smaller link, which re-advertises, which...
Which in turn can be fixed by adding a _third_ connection between the two
routers, dedicated to advertising /32s, which the upstream/recipient then
route-maps to set-next-hop to the second connection... :-)
Sounds to me like we need itrace soon.
-Bill
