[47269] in North American Network Operators' Group
Re: Effective ways to deal with DDoS attacks?
daemon@ATHENA.MIT.EDU (Wojtek Zlobicki)
Wed May 1 21:39:28 2002
Message-ID: <014401c1f17a$1f2299f0$6401a8c0@ender>
From: "Wojtek Zlobicki" <wojtekz@idirect.com>
To: <measl@mfn.org>
Cc: <nanog@merit.edu>
Date: Wed, 1 May 2002 21:38:52 -0400
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
> > What processes and/or tools are large networks using to
> > identify and limit the impact of DDoS attacks?
>
> A great deal of thought is being expended on this question, I am certain,
> however, how many of these thought campaings have born significant fruit
yet,
> I do not know.
How about the following :
We develop a new community , being fully transitive (666 would be
appropriate ) and either build into router code or create a route map to
null route anything that contains this community. The effect of this being
the distribution of the force of the attack.
This aside, how effective would be using a no export community with ones
peers (being non transitive, it would still distribute the force of the
attack).
