Re: Provider-based DDoS Protection Services

["Christopher L. Morrow" <christopher.morrow () mci com>]

hey, chip's a good egg as well, listen to him too :)

On Thu, 28 Jul 2005, chip wrote:
> Some things you can do that are free include making sure that if/when
> you get attacked you have a plan in place of how to deal with it.
> This includes having up to date contact information for your service
> provider.  Knowing what their capabilities are and how they deal with
> attacks.  Having circuit information, hardware information, and
> hardware vendor contact information available to help all involved
> parties aid in mitigating the attack.  This can save huge amounts of
> time when "bad things happen" and this applies no matter how large or
> small you are.

This sort of thing is very often overlooked. As with any emergency plan:
1) have a plan
2) test the plan
3) validate the plan

Also, chip didn't mention this, but... perhaps what is being attacked
doesn't HAVE to work. Your provider might also have the possibility to let
you blackhole things inside their network, so if something less important
is attacked, just make it go away 'free' don't pay for mitigation if it's
not required...

-Chris
chemical engineer... :)