[52835] in North American Network Operators' Group
RE: attacking DDOS using BGP communities?
daemon@ATHENA.MIT.EDU (alex@yuriev.com)
Fri Oct 18 10:29:02 2002
Date: Fri, 18 Oct 2002 10:35:02 -0400 (EDT)
From: alex@yuriev.com
To: Frank Scalzo <frank.scalzo@amerinex.net>
Cc: Saku Ytti <saku+nanog@ytti.fi>, nanog@merit.edu
In-Reply-To: <2CF5AB5ABE16F24E9EEE478E18F054BE6D67F6@go7o43.floristnet.g5p>
Errors-To: owner-nanog-outgoing@merit.edu
>
> 701 has a blackhole community, 701:9999, basically it sets the next-hop
> to something blackholed on their edge so the DOS attack gets dropped as
> soon as it hits them. I have made use of this to kill at least one DDOS
> event. A global blackhole community may be difficult to achieve, but
> getting the majority of large providers to implement one is a good
> start.
Brilliant solution - lets stop DDOS attack on the customer by denying
service to the customer is a non-distributed way.
Alex
