nanog mailing list archives
Re: [arin-announce] IPv4 Address Space (fwd)
From: Alex Yuriev <alex () yuriev com>
Date: Wed, 29 Oct 2003 14:46:01 -0500 (EST)
On Wed, 29 Oct 2003, Alex Yuriev wrote:As the network operators, we move bits and that is what we should stick to moving. We do not look into packets and see "oh look, this to me looks like an evil application traffic", and we should not do that. It should not be the goal of IS to enforce the policy for the traffic that passes through it. That type of enforcement should be left to ES.Well, that is nice thery, but I'd like to see how you react to 2Gb DoS attack and if you really intend to put filters at the edge or would not prefer to do it at the entrance to your network. Slammer virus is just like DoS, that is why many are filtering it at the highiest possible level as well as at all points where traffic comes in from the customers.
Actually, no, it is not theory. When you are slammed with N gigabits/sec of traffic hitting your network, if you do not have enough capacity to deal with the attack, no amount of filtering will help you, since by the time you apply a filter it is already too late - the incoming lines have no place for "non-evil" packets. Leave content filtering to the ES, and *force* ES to filter the content. Let IS be busy moving bits. Alex
Current thread:
- Re: [arin-announce] IPv4 Address Space (fwd), (continued)
- Re: [arin-announce] IPv4 Address Space (fwd) Crist Clark (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) E.B. Dreger (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Scott McGrath (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Paul Timmins (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Scott McGrath (Oct 30)
- RE: [arin-announce] IPv4 Address Space (fwd) Kuhtz, Christian (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) Leo Bicknell (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) matt (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) Alex Yuriev (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) william (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) Alex Yuriev (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) matt (Oct 29)
- traffic engineering (or lack of thereof) Alex Yuriev (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) william (Oct 29)
- Re: [arin-announce] IPv4 Address Space (fwd) Alex Yuriev (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) matt (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Alex Yuriev (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Chris Parker (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Alex Yuriev (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Chris Parker (Oct 30)
- more on filtering Alex Yuriev (Oct 30)
- Re: [arin-announce] IPv4 Address Space (fwd) Leo Bicknell (Oct 29)