nanog mailing list archives

Effective ways to deal with DDoS attacks?

From: Pete Kruckenberg <pete () kruckenberg com>
Date: Wed, 1 May 2002 17:18:24 -0600 (MDT)


There's been plenty of discussion about DDoS attacks, and my
IDS system is darn good at identifying them. But what are
effective methods for large service-provider networks (ie
ones where a firewall at the front would not be possible) to
deal with DDoS attacks?

Current method of updating ACLs with the source and/or
destination are slow and error-prone and hard to maintain
(especially when the target of the attack is a site that
users would like to access).

A rather extensive survey of DDoS papers has not resulted in
much on this topic.

What processes and/or tools are large networks using to
identify and limit the impact of DDoS attacks?

Thanks.
Pete.

Current thread:

Effective ways to deal with DDoS attacks? Pete Kruckenberg (May 01)
- Re: Effective ways to deal with DDoS attacks? dies (May 01)
- Re: Effective ways to deal with DDoS attacks? Avleen Vig (May 01)
  - Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 01)
  - Re: Effective ways to deal with DDoS attacks? Christopher L. Morrow (May 01)
    - Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 01)
    - Re: Effective ways to deal with DDoS attacks? Avleen Vig (May 02)
  - Re: Effective ways to deal with DDoS attacks? Hank Nussbacher (May 02)
    - Re: Effective ways to deal with DDoS attacks? Alexei Roudnev (May 02)
    - Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 02)
    - Re: Effective ways to deal with DDoS attacks? Christopher L. Morrow (May 02)

(Thread continues...)