[70967] in North American Network Operators' Group
Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Wed Jun 2 15:27:07 2004
To: Danny McPherson <danny@tcb.net>
Cc: NANOG <nanog@merit.edu>
In-Reply-To: Your message of "Wed, 02 Jun 2004 11:39:39 MDT."
<D2BBE418-B4BB-11D8-8EE4-000393D54EA6@tcb.net>
From: Valdis.Kletnieks@vt.edu
Date: Wed, 02 Jun 2004 15:26:28 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_1400886392P
Content-Type: text/plain; charset=us-ascii
On Wed, 02 Jun 2004 11:39:39 MDT, Danny McPherson <danny@tcb.net> said:
> How do you discriminate *DDOS attacks employing source address spoofing*
> from broken NATs, rampant worms, PMTU and other related misconfiguration
> resulting in backscatter and similar garbage - with filter counters?
A bogon packet is a bogon packet Filter them all and let the appropriate deity
sort them out (unless you bill by traffic volume ;)
--==_Exmh_1400886392P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFAvinkcC3lWbTT17ARAo6xAJ9pFMrtD5ss19TtaT/2ipd/PuzQawCfeAgb
BZMMekQUoxnS2hFot7LcUQw=
=q4pv
-----END PGP SIGNATURE-----
--==_Exmh_1400886392P--
