Security Incidents mailing list archives
Re: DOS
From: Shoten <shoten () starpower net>
Date: Thu, 22 Feb 2001 10:09:36 -0500
Do you have any Firewall ? If yes , its just block all ports , less those that you use ( off
course ) This won't do any good if this is a DDoS. The bottleneck being filled up with traffic isn't the 10 or 100 Mbps connection inside the firewall, it's the WAN link to the internet. Even if the traffic is stopped entirely at the firewall, the pipe in from the ISP is so full during a DDoS that it doesn't matter. It's like having a receptionist at the front desk of a company on the 7th floor keeping all of the weirdos from entering the back offices, but there are so many whackos coming into the building and up the elevator that nobody else can even make it in the front door.