[60073] in North American Network Operators' Group
RE: WANTED: ISPs with DDoS defense solutions
daemon@ATHENA.MIT.EDU (Rafi Sadowsky)
Thu Jul 31 10:49:38 2003
Date: Thu, 31 Jul 2003 17:47:13 +0300 (IDT)
From: Rafi Sadowsky <rafi-nanog@meron.openu.ac.il>
To: "McBurnett, Jim" <jmcburnett@msmgmt.com>
Cc: Petri Helenius <pete@he.iki.fi>, variable@ednet.co.uk,
Rob Thomas <robt@cymru.com>, NANOG <nanog@merit.edu>
In-Reply-To: <9BF6F06C4BC90746ADD6806746492A332AEC60@msmmail01.msmgmt.com>
Errors-To: owner-nanog-outgoing@merit.edu
## On 2003-07-31 09:27 -0400 McBurnett, Jim typed:
MJ>
MJ> I tend to agree here.
MJ> I have noticed so many attacks etc coming from
MJ> APNIC as of recent that on our corp network we have an ACL
MJ> to block a number of APNIC blocks.
MJ> If there was a dynamic method to add null0 routes to
MJ> identified zombies, I think that would help.
MJ> IE. security company A provides a feed (BGP etc)
MJ> to null route zombies that it has identified.
You may want to ask Rob Thomas about that
(especially since he was involved in this thread)
MJ>
MJ> But that opens a whole other can of worms.....
MJ>
MJ>
--
Rafi
