[93648] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: DNS - connection limit (without any extra hardware)

daemon@ATHENA.MIT.EDU (Hank Nussbacher)
Sun Dec 10 14:46:57 2006

Date: Sun, 10 Dec 2006 21:45:57 +0200 (IST)
From: Hank Nussbacher <hank@efes.iucc.ac.il>
To: Petri Helenius <pete@he.iki.fi>
Cc: nanog@nanog.org
In-Reply-To: <457C4489.8070404@he.iki.fi>
Errors-To: owner-nanog@merit.edu

On Sun, 10 Dec 2006, Petri Helenius wrote:

>> Virtual patching.
>
> How do I virtual patch the machine in ireland which attacked my mail server 
> just a few minutes ago?

You don't patch the machine in Ireland, but once your "virtual patching 
box" identifies a hostile system and identifies what it is infected with, 
it can then do the virtual patching on your end so that all subsequent 
pkts entering from that machine in Ireland are cleaned and no longer 
hostile.

-Hank


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[93648] in North American Network Operators' Group

Re: DNS - connection limit (without any extra hardware)

daemon@ATHENA.MIT.EDU (Hank Nussbacher)Sun Dec 10 14:46:57 2006

daemon@ATHENA.MIT.EDU (Hank Nussbacher)
Sun Dec 10 14:46:57 2006