[43816] in North American Network Operators' Group
Re: Digital Island sponsors DoS attempt?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Fri Oct 26 12:55:08 2001
Message-Id: <200110261648.f9QGmdUg027180@foo-bar-baz.cc.vt.edu>
To: Dave Siegel <dave@siegelie.com>
Cc: nanog@merit.edu
In-Reply-To: Your message of "Fri, 26 Oct 2001 09:32:39 PDT."
<20011026093239.A32266@siegelie.com>
From: Valdis.Kletnieks@vt.edu
Mime-Version: 1.0
Content-Type: multipart/signed; boundary="==_Exmh_-1148294273P";
micalg=pgp-sha1; protocol="application/pgp-signature"
Content-Transfer-Encoding: 7bit
Date: Fri, 26 Oct 2001 12:48:39 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_-1148294273P
Content-Type: text/plain; charset=us-ascii
On Fri, 26 Oct 2001 09:32:39 PDT, Dave Siegel said:
> If you have a list of prefix's you intend to measure, it would not be
If.
This list comes from *where*?
What if I pointed out that IBM's AIX implements Path MTU Discovery by sending
an ICMP packet with max MTU and the DF bit set (so it can discover the *max*
MTU even if the first *TCP* packet is not a full MTU long)?
Are you saying that I should contact each prefix that my Listserv machine is
sending mail to, to get permission to negotiate PMTU discovery? Ouch.
That's 600K subscribers, and I need to go look up where their MX entries
point to, figure out what AS the destination is in, and send the AS contact
mail (assuming that 'whois' actually has valid data) - and then repeat for
every new subscriber to a list from an AS we haven't contacted before.
No? That seems silly? How is it any different from 5 PING packets so a site
can decide which server to send stuff from? Where do you draw the line?
> transit providers needn't be involved, as transit providers typically
> don't measure icmp flows bound to customers.
We've seen cases where transit providers do things like install blackhole
routing because they disagree with a site because of their traffic. This
proves that at least *some* transit providers care about *some* traffic for
*some* reason. Again, where do you draw the line?
--
Valdis Kletnieks
Operating Systems Analyst
Virginia Tech
--==_Exmh_-1148294273P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8
Comment: Exmh version 2.5 07/13/2001
iQA/AwUBO9mT53At5Vm009ewEQI++wCg04HCqzvVpeMV5EgL6Ce/i0bpzoIAoKn9
WCDTDL2ZARxvQUbwfrsDXtUB
=833O
-----END PGP SIGNATURE-----
--==_Exmh_-1148294273P--
