nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Six PCs caused BigPond problems

From: Bill Stewart <nonobvious () gmail com>
Date: Thu, 14 Apr 2005 22:49:28 -0700

On 4/14/05, Sean Donelan <sean () donelan com> wrote:

http://www.zdnet.com.au/news/security/0,2000061744,39188319,00.htm
Disconnecting six compromised personal computers on Tuesday evening eased
the difficulties caused by bogus requests which clogged BigPond's domain
name servers (DNS), slowing customer e-mail and Web site access, Telstra said.


That's ok.  At least six more Telstra PCs will get compromised tomorrow.
I don't know if they're doing uRPF etc. to stop address spoofing, or
blocking RFC1918,
but if not, that may help keep the load down.  I'm not a fan of using anycast
as opposed to building scalable distributed configurations of DNS servers 
and coordinating them with the DHCP settings that tell customers what
server to use,
(and monitoring them to make sure they keep working :-),
but it can be good for isolating some problems like this.

----
             Thanks;     Bill

Note that this isn't my regular email account - It's still experimental so far.
And Google probably logs and indexes everything you send it.
Previous By Date Next
Previous By Thread Next

Current thread: