nanog mailing list archives

Re: real-time DDoS help?

From: James <haesu () towardex com>
Date: Tue, 22 Jun 2004 13:55:21 -0400


okay people, this is ridiculous.

if you want real-time DoS mitigation, cooperation between ASN's, may I
introduce you all to:

 http://www.pch.net/inoc-dba/

enough with the irc.nanog.org. given that NANOG group is somewhat of higher
profile, and also given that number of EFNet servers struggle with their GigE
transit connections in regards to larger DDoS attacks, irc.nanog.org is a joke
right?

-J


On Tue, Jun 22, 2004 at 09:00:16AM -0500, Bubba Parker wrote:


If need be, if someone were to actually provide a shell or something
that did have enough bandwidth, I could setup the IRC server there and it
would be fine.

On Tue, Jun 22, 2004 at 09:41:51AM -0400, Daniel Reed wrote:


On 2004-06-22T08:27-0500, Bubba Parker wrote:
) Well if people use this IRC server, there's definately going to be more
) control over the channel and server itself. And if needed, other members
) could gain more control server-wide. Let me know if you have any
) questions.

You may find that an IRC server used for the purposes of discussing DoS
attacks, to the point of being used for real time mitigation of same, will
ultimately be targeted as part of those attacks.

A dedicated DS3 probably does not provide enough bandwidth to run a modern
DoS-resistent IRC server. As a point of reference, during an attack, some
EFnet IRC servers may take in multiple hundreds of Mb/s before upstream
action is initiated.

-- 
Daniel Reed <n () ml org>   http://people.redhat.com/djr/   irc.efnet.us
There are people who do things and people who take the credit, and the
trick is to be in the first group; there is a lot less competition. --
Dwight Morrow, American Diplomat


-- 
Bubba Parker
sysadmin () citynetwireless net
CityNet LLC
http://www.citynetinfo.com/


-- 
James Jun                                            TowardEX Technologies, Inc.
Technical Lead                        Network Design, Consulting, IT Outsourcing
james () towardex com                  Boston-based Colocation & Bandwidth Services
cell: 1(978)-394-2867           web: http://www.towardex.com , noc: www.twdx.net

Current thread:

Re: real-time DDoS help?, (continued)
- - - Re: real-time DDoS help? Bubba Parker (Jun 22)
    - Re: real-time DDoS help? Daniel Reed (Jun 22)
    - Re: real-time DDoS help? Bubba Parker (Jun 22)
    - Re: real-time DDoS help? Bubba Parker (Jun 22)
    - Re: real-time DDoS help? Matthew McGehrin (Jun 22)
    - Re: real-time DDoS help? Bubba Parker (Jun 22)
    - Re: real-time DDoS help? Christian Malo (Jun 22)
    - Re: real-time DDoS help? Bubba Parker (Jun 22)
    - Re: real-time DDoS help? Tim Brown (Jun 22)
    - Re: to irc or not to irc Matthew McGehrin (Jun 22)
    - Re: real-time DDoS help? James (Jun 22)
    - Re: real-time DDoS help? Steve Gibbard (Jun 22)
    - Re: real-time DDoS help? Jonathan M. Slivko (Jun 22)
    - Re: real-time DDoS help? Charles Sprickman (Jun 22)
- Re: real-time DDoS help? Rubens Kuhl Jr. (Jun 19)
- Re: real-time DDoS help? Michael Loftis (Jun 19)
- Re: real-time DDoS help? Mike Lewinski (Jun 19)
- Re: real-time DDoS help? Charles Sprickman (Jun 20)
- Re: real-time DDoS help? Daniel Golding (Jun 22)