[47366] in North American Network Operators' Group
RE: DDOS attacks and Large ISPs doing NAT?
daemon@ATHENA.MIT.EDU (Mansey, Jon)
Thu May 2 14:37:38 2002
Message-ID: <43CAA8BAF8A21049B3ABF1A70AED597532EE90@laxexg01.la.interpacket.net>
From: "Mansey, Jon" <Jon_Mansey@verestar.com>
To: "'Valdis.Kletnieks@vt.edu'" <Valdis.Kletnieks@vt.edu>
Cc: nanog@merit.edu
Date: Thu, 2 May 2002 11:32:48 -0700
MIME-Version: 1.0
Content-Type: text/plain
Errors-To: owner-nanog-outgoing@merit.edu
Unless Im mistaken (entirely possible), an IP enabled phone has 2 distinct
and separate "stacks", the IP stack and the "phone" stack.
As I said, in a NAT'd scenario the IP stack will never see an unsolicited
request and hence not respond to it.
The phone side of course will ring when called. Duh.
GPRS <> VoIP (yet)
Jm
> -----Original Message-----
> From: Valdis.Kletnieks@vt.edu [mailto:Valdis.Kletnieks@vt.edu]
> Sent: Thursday, May 02, 2002 11:26 AM
> To: Mansey, Jon
> Cc: nanog@merit.edu
> Subject: Re: DDOS attacks and Large ISPs doing NAT?
>
>
> On Thu, 02 May 2002 11:06:33 PDT, "Mansey, Jon" said:
>
> > The DDOS discussion is specifically referring to a "live" syn or
> > syn/ack attack from hosts that respond to connection
> requests. A NAT'd
> > cell phone wont, cant ever, respond to an unsolicited connection
> > request.
>
> *RING*!! *RING*!! Oh, I'm sorry, that was the clue phone
> ringing - it couldn't be your phone, since it wouldn't answer
> an unsolicited connection request....
>
> You were saying?
>
> (To fill in the blanks - get a trojan loaded into the
> cellphone/PDA combo, and then send it a page telling it
> who/what to attack).
>
> --
> Valdis Kletnieks
> Computer Systems Senior Engineer
> Virginia Tech
>
>
