nanog mailing list archives
Re: engineering --> ddos and flooding
From: Jim Shankland <nanog () shankland org>
Date: Fri, 1 Jun 2001 08:44:19 -0700
Dan Foster <dsf () frontiernet net> writes:
I, too, am much looking forward to the proposed standards to turn this kind of thing into a non-event. :)
Well, look no further than here, for your prayers are answered: On any connection to an end-user, ISPs shall forward only packets with source addresses assigned to that end-user by the ISP. Exceptions can be made for multi-homed end-users: e.g., if an end-user has 1.2.3.0/24 from ISP A, and 5.6.7.0/24 from ISP B, each ISP may choose to accept packets with source addresses from the block assigned by the other ISP, by prior arrangement with the end-user and the other ISP. Now, if you're looking forward to the *implementation* of this proposed standard, you had best be looking through a very strong telescope. It will happen some time after the last open SMTP relay on the Internet is secured :-(. Jim Shankland
Current thread:
- Re: engineering --> ddos and flooding Dan Foster (Jun 01)
- <Possible follow-ups>
- Re: engineering --> ddos and flooding Jim Shankland (Jun 01)
- Re: engineering --> ddos and flooding Walter Prue (Jun 01)
- Re: engineering --> ddos and flooding lucifer (Jun 01)
- Re: engineering --> ddos and flooding Bill Woodcock (Jun 01)
- Re: engineering --> ddos and flooding Geoff Zinderdine (Jun 01)
- Re: engineering --> ddos and flooding Mark Mentovai (Jun 01)
- Re: engineering --> ddos and flooding Geoff Zinderdine (Jun 01)
- Re: engineering --> ddos and flooding Christopher A. Woodfield (Jun 01)
- Re: engineering --> ddos and flooding Mark Mentovai (Jun 01)
- Re: engineering --> ddos and flooding lucifer (Jun 01)
- Re: engineering --> ddos and flooding Hank Nussbacher (Jun 03)