nanog mailing list archives

Re: Counter DoS

From: Petri Helenius <pete () he iki fi>
Date: Thu, 11 Mar 2004 23:59:34 +0200


Deepak Jain wrote:

If you wanted to do that, wouldn't the firewall just needdirected-broadcast left open or emulate similar behavior, or eventurning ip unreachables back on?
Flooding pipes accidentally is easy enough. Now people are sellingproducts to do it deliberately.

Maybe there is a lesson to be learned from many RBL operators. To makesure, just send packets to the whole /24 or /16 you got an "attack"packet from.


Pete

Current thread:

Re: Counter DoS, (continued)
- - - Re: Counter DoS Brian Bruns (Mar 11)
    - Re: Counter DoS Gregory Taylor (Mar 11)
    - Re: Counter DoS Valdis . Kletnieks (Mar 11)
    - Re: Counter DoS Rachael Treu (Mar 11)
    - Re: Counter DoS Vinny Abello (Mar 11)
    - Re: Counter DoS E.B. Dreger (Mar 11)
    - Re: Counter DoS Rachael Treu (Mar 11)
    - Re: Counter DoS Gregory Taylor (Mar 11)
    - Re: Counter DoS Deepak Jain (Mar 11)
    - Re: Counter DoS Rachael Treu (Mar 11)
    - Re: Counter DoS Petri Helenius (Mar 11)
    - Re: Counter DoS Laurence F. Sheldon, Jr. (Mar 11)
    - Re: Counter DoS william(at)elan.net (Mar 11)
    - Re: Counter DoS Laurence F. Sheldon, Jr. (Mar 11)
    - Re: Counter DoS Brian Bruns (Mar 11)
    - Re: Counter DoS Rachael Treu (Mar 15)
  - Re: Counter DoS Daniel Karrenberg (Mar 11)
- Re: Counter DoS william(at)elan.net (Mar 10)
  - RE: Counter DoS Mark Borchers (Mar 10)
    - RE: Counter DoS Christopher L. Morrow (Mar 10)
- Re: Counter DoS Baldwin, James (Mar 11)

(Thread continues...)