nanog mailing list archives
Re: Nachi/Welchia Aftermath
From: Donovan Hill <lists () lazyeyez net>
Date: Tue, 20 Jan 2004 16:41:52 -0800
On Tuesday 20 January 2004 04:16 pm, Rubens Kuhl Jr. wrote:
Not all L3-switches are flow-based; prefix-based ones should do just fine. Can people add/correct this initial list ? Flow-based: Foundry with IronCore modules, Cisco Catalyst 6500 with Sup1(A) Prefix-based: Foundry with JetCore modules, Cisco Catalyst 6500/7600 with Sup2(A), Sup3(A/BXL) Rubens
Where do the Extreme and Juniper fit into this?
----- Original Message ----- From: <haesu () towardex com> To: "Brent Van Dussen" <vandusb () attens com> Cc: "NANOG" <nanog () merit edu> Sent: Tuesday, January 20, 2004 9:46 PM Subject: Re: Nachi/Welchia Aftermathlesson learned: stop using /makeshift/ layer3 switches (without naming vendor) to run L3 core -J On Tue, Jan 20, 2004 at 02:22:52PM -0800, Brent Van Dussen wrote:Well folks, since the middle of August I've been tracking the spread and subsequent efforts by our community to stop the nachia/welchia infection that took down so many networks. Sadly, by my estimations, only about 20-30% of infected hosts were cleaned. After Jan 1, 2004 it appears that the thousands, (millions?)ofremaining infected hosts were rebooted and the worm removed itself. Network traffic has finally returned to normal. What kind of effects did everyone see from this devastating worm andwhatlessons did we learn for preventing network downtime in the future?-- James Jun (formerly Haesu) TowardEX Technologies, Inc. 1740 Massachusetts Ave. Boxborough, MA 01719 Consulting, IPv4 & IPv6 colocation, web hosting, network design &implementationhttp://www.towardex.com | james () towardex com Cell: (978)394-2867 | Office: (978)263-3399 Ext. 170 Fax: (978)263-0033 | AIM: GigabitEthernet0 NOC: http://www.twdx.net | POC: HAESU-ARIN, HDJ1-6BONE
-- Donovan Hill Electronics Engineering Technologist, CCNA www.lazyeyez.net, www.gwsn.com
Current thread:
- Re: Nachi/Welchia Aftermath, (continued)
- Re: Nachi/Welchia Aftermath Scott Weeks (Jan 20)
- Re: Nachi/Welchia Aftermath Scott Weeks (Jan 20)
- Re: Nachi/Welchia Aftermath haesu (Jan 20)
- Re: Nachi/Welchia Aftermath Rubens Kuhl Jr. (Jan 20)
- Re: Nachi/Welchia Aftermath haesu (Jan 20)
- Re: Nachi/Welchia Aftermath Paul Vixie (Jan 20)
- Re: Nachi/Welchia Aftermath haesu (Jan 21)
- Re: Nachi/Welchia Aftermath Richard A Steenbergen (Jan 21)
- Re: Nachi/Welchia Aftermath Paul Vixie (Jan 21)
- Re: Nachi/Welchia Aftermath haesu (Jan 21)
- Re: Nachi/Welchia Aftermath Rubens Kuhl Jr. (Jan 20)
- Re: Nachi/Welchia Aftermath Scott Weeks (Jan 20)
- Re: Nachi/Welchia Aftermath Donovan Hill (Jan 20)
- Re: Nachi/Welchia Aftermath Rubens Kuhl Jr. (Jan 20)
- Re: Nachi/Welchia Aftermath Stephen J. Wilcox (Jan 20)
- Re: Nachi/Welchia Aftermath Mikael Abrahamsson (Jan 21)
- Re: Nachi/Welchia Aftermath Donovan Hill (Jan 21)
- Re: Nachi/Welchia Aftermath Tom (UnitedLayer) (Jan 21)
- Re: Nachi/Welchia Aftermath Mikael Abrahamsson (Jan 21)
- Re: Nachi/Welchia Aftermath Richard A Steenbergen (Jan 20)
- Re: Nachi/Welchia Aftermath Tom (UnitedLayer) (Jan 20)
- Re: Nachi/Welchia Aftermath John Lyons (Jan 21)
- Re: Nachi/Welchia Aftermath Rafi Sadowsky (Jan 21)