nanog mailing list archives

Re: engineering --> ddos and flooding

From: lucifer () lightbearer com
Date: Fri, 1 Jun 2001 11:27:44 -0700 (PDT)


Walter Prue wrote:

This second low speed connection thus becomes a lightning rod for the
DDOS traffic most of which will be discarded and not even delivered due
to congestion on the slow speed link, the slower the better for you.
This of course kills all traffic to the attacked node but the rest of

                 ^^^^^^^^^^^^^^^^^

the network remains usable.


Including the BGP session, I would think, thus causing it to reset and
drop the route, sending all the traffic back to the primary, which unfloods
the smaller link, which re-advertises, which...

Flappage, anyone?
-- 
***************************************************************************
Joel Baker                           System Administrator - lightbearer.com
lucifer () lightbearer com              http://www.lightbearer.com/~lucifer

Current thread:

Re: engineering --> ddos and flooding Dan Foster (Jun 01)
- <Possible follow-ups>
- Re: engineering --> ddos and flooding Jim Shankland (Jun 01)
- Re: engineering --> ddos and flooding Walter Prue (Jun 01)
  - Re: engineering --> ddos and flooding lucifer (Jun 01)
    - Re: engineering --> ddos and flooding Bill Woodcock (Jun 01)
    - Re: engineering --> ddos and flooding Geoff Zinderdine (Jun 01)
    - Re: engineering --> ddos and flooding Mark Mentovai (Jun 01)
    - Re: engineering --> ddos and flooding Geoff Zinderdine (Jun 01)
    - Re: engineering --> ddos and flooding Christopher A. Woodfield (Jun 01)
    - Re: engineering --> ddos and flooding Mark Mentovai (Jun 01)
  - Re: engineering --> ddos and flooding Mark Mentovai (Jun 01)
    - Re: engineering --> ddos and flooding Hank Nussbacher (Jun 03)
    - Re: engineering --> ddos and flooding Geoff Zinderdine (Jun 04)
  - Re: engineering --> ddos and flooding Sykes, Phil (Jun 01)

(Thread continues...)