[38943] in North American Network Operators' Group
Re: anti-spoofing filters
daemon@ATHENA.MIT.EDU (RJ Atkinson)
Sat Jun 23 22:02:15 2001
Message-Id: <5.1.0.14.2.20010623215356.01d95ce0@10.30.15.2>
Date: Sat, 23 Jun 2001 21:57:23 -0400
To: "Christopher A. Woodfield" <rekoil@semihuman.com>
From: RJ Atkinson <rja@inet.org>
Cc: nanog@merit.edu
In-Reply-To: <20010623205658.B26177@semihuman.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Errors-To: owner-nanog-outgoing@merit.edu
At 20:56 23/06/01, Christopher A. Woodfield wrote:
>At a conference in late 1999, UUNet announced that they had anti-spoof
>filters in place on their dialup ports. Not that that amount to much in
>contrast to teh amount of spoofed DDOS traffic from cable providers, mind
>you...IIRC, it's the cable providers that need to put up the anti-spoofing
>filters the most.
Mistakes happen in any network, because people are human.
That noted, the two major Cable ISPs *do* regularly put in
anti-spoofing filters on their access routers.
Anti-spoofing filters wouldn't have helped with the GRC DDOS
situation though, since the addresses used by the attacking systems
were *valid* in that case -- according to the GRC web site.
Ran
