nanog mailing list archives
Re: NAP/ISP Saturation WAS: Re: Exchanges that matter...
From: Tony Li <tli () jnx com>
Date: Fri, 20 Dec 1996 19:32:58 -0800 (PST)
Can I have 2(a) - deal with it statistically and intelligently. TCP/IP stacks which have got far greater public flak than Cisco's (Solaris 2.4 for instance) do not die when sent 128kb/s of ICMP. As I understand it 11.1 allows access lists based on icmp packet type, and this filtering is already done off CPU. So "all" the CPU has to do is block ICMPs from particular hosts, or (even) ICMP at all, if it is being flooded. You can have anything you like ... at Alice's Restaurant. ;-) Assuming we're still talking about a 7010, I suspect that you could do incoming ICMP filtering in the SSE and discard those. But then the bad guys simply attack your BGP port to circumvent your filters. And the filters are not intelligent enough to perform the authentication computation. I'm surprised it's as low as 128kb/s. It should be more around 2kpps. Not that this is a stretch. ;-) I did. They said "the problem doesn't exist". What? And you didn't believe them? ;-) I suspect that a better approach is to contact the people with clue directly.... it sounds like you went through TAC. Tony - - - - - - - - - - - - - - - - -
Current thread:
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter..., (continued)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Nathan Stratton (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Paul A Vixie (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Jim Van Baalen (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Tony Li (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Alex.Bligh (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Avi Freedman (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Alex.Bligh (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Ophir Ronen (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Tony Li (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Michael Dillon (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Tony Li (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... David Schwartz (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Alan Hannan (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... David Schwartz (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Brett L. Hawn (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Alan Hannan (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Brett L. Hawn (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Jon Zeeff (Dec 21)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Michael Dillon (Dec 20)
- Re: NAP/ISP Saturation WAS: Re: Exchanges that matter... Curtis Villamizar (Dec 20)
- DoS Attacks Robert Laughlin (Dec 20)