[53154] in North American Network Operators' Group
Re: ICANN Targets DDoS Attacks
daemon@ATHENA.MIT.EDU (David Conrad)
Mon Nov 4 12:07:04 2002
Date: Mon, 04 Nov 2002 09:08:44 -0800
From: David Conrad <david.conrad@nominum.com>
To: <bmanning@vacation.karoshi.com>, alok <alok.dube@apara.com>
Cc: <cjclark@alum.mit.edu>, <Valdis.Kletnieks@vt.edu>,
nanog <nanog@merit.edu>
In-Reply-To: <200211042347.gA4NlWV22173@vacation.karoshi.com>
Errors-To: owner-nanog-outgoing@merit.edu
Just to be clear:
(a) RSSAC is not an IETF working group. It is an ICANN thing and not open
to the public (last I heard)
(b) "active" in this context must be using a definition of that term that
I'm unfamiliar with.
Rgds,
-drc
On 11/4/02 3:47 PM, "bmanning@vacation.karoshi.com"
<bmanning@vacation.karoshi.com> wrote:
>
>
> yes. this is a topic of active discussion within
> the RSSAC.
>
>
>>
>>
>> is any active working group persuing this matter seriously?
>>
>> -rgds
>> Alok
>> ----- Original Message -----
>> From: alok <alok.dube@apara.com>
>> To: <cjclark@alum.mit.edu>; <Valdis.Kletnieks@vt.edu>
>> Sent: Saturday, November 02, 2002 4:26 AM
>> Subject: Re: ICANN Targets DDoS Attacks
>>
>>
>>
>>
>>> The first, dropping broadcasts destined to your customers, is possibly
>>> doable, but not trivial.
>>
>> ------> IGP learnt networks .. a small tweaky bit which learns broadcast
>> addresses via the networks in the IGP wud help (again summarization wud make
>> it bad)
>>
>>> The second, catching all broadcasts coming
>>> in, out, or just passing through, is pretty much impossible.
>>
>> -----> a very small percentage cud be blocked if u were willing to link this
>> to BGP learnt networks..at least those are "complete networks", not
>> subnetted....
>>
>> ofcourse its a very small portion, mebbe u cud ask guys to send more
>> specific BGP routes from now....
>>
>> -A
>>
>>
>>
>>
>>
>
