[54786] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Is there a line of defense against Distributed Reflective attacks?

daemon@ATHENA.MIT.EDU (Brad Laue)
Thu Jan 16 23:57:07 2003

Date: Thu, 16 Jan 2003 23:56:39 -0500
From: Brad Laue <brad@brad-x.com>
To: "Christopher L. Morrow" <chris@UU.NET>
Cc: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu

Christopher L. Morrow wrote:
> 
> On Thu, 16 Jan 2003, Brad Laue wrote:
> 
> 
[ .. ]
> 
> 
> Doesn't ECN depend on 'well behaved' traffic? In other words, wouldn't it
> require the hosts sending traffic to slow down? So... even if the hosts
> slowed down, 10,000 hosts still is a high traffic rate at the end point.
> :(
> 

Good point.

I suppose another basic but effective method of prevention would be 
egress filtering. An increasing minority of network providers are 
instituting it, but it doesn't seem like it will be a widespread thing 
in the near-term.

-- 
// -- http://www.BRAD-X.com/ -- //


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[54786] in North American Network Operators' Group

Re: Is there a line of defense against Distributed Reflective attacks?

daemon@ATHENA.MIT.EDU (Brad Laue)Thu Jan 16 23:57:07 2003

daemon@ATHENA.MIT.EDU (Brad Laue)
Thu Jan 16 23:57:07 2003