[44218] in North American Network Operators' Group
Re: Rate limiting UDP,Multicast,ICMP
daemon@ATHENA.MIT.EDU (Jared Mauch)
Tue Nov 13 12:11:06 2001
Date: Tue, 13 Nov 2001 12:10:33 -0500
From: Jared Mauch <jared@puck.Nether.net>
To: Thomas Gainer <TGainer@e-xpedient.com>
Cc: nanog@merit.edu
Message-ID: <20011113121033.B7797@puck.nether.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <E6F85CA58D2A834E99B1683C05BC7987025F95B2@mail.corp.com>; from TGainer@e-xpedient.com on Tue, Nov 13, 2001 at 12:03:58PM -0500
Errors-To: owner-nanog-outgoing@merit.edu
Some providers do rate-limit ICMP at the public exchange points.
But they tend to only limit echo-request and echo-reply
unreachables, p-mtu and other fun icmp messages are not
limited by these.
I'm not aware of anyone that would limit udp traffic. As DNS
is udp, it would not be wise to rate-limit udp flows.
As far as multicast goes, I'm not aware of anyone running
native multicast that would limit the traffic. Those still using
DVMRP may have multicast rate-limits in place as to not have a massive
bandwidth sucking sound coming from their general direction.
- jared
On Tue, Nov 13, 2001 at 12:03:58PM -0500, Thomas Gainer wrote:
>
> Is it common practice for ISPs to rate limit UDP, Multicast and ICMP on a
> customer connection to reduce the effects of various DOS attacks? On the
> backbone?
>
> TIA,
>
> Thomas
--
Jared Mauch | pgp key available via finger from jared@puck.nether.net
clue++; | http://puck.nether.net/~jared/ My statements are only mine.
