nanog mailing list archives
Re: Provider-based DDoS Protection Services
From: Florian Weimer <fw () deneb enyo de>
Date: Fri, 29 Jul 2005 09:10:06 +0200
* John Neiberger:
Protect thyself how? For DDoS protection to work, the nasty traffic must be stopped before it gets to my access circuits. Once it gets close enough for me to do anything about it directly it's too late.
It depends. Quite a few DoS attacks are not based on bandwidth saturation or network device overload. On the other hand, if you address the easy ones within your own network, the attackers might switch to types which you can't deal with on your own. 8-( Anyway, you should examine *why* you (or your customers) are attacked, and address that. Everything else is likely cost-effective. Of course, this might mean you have to do without some revenue if you have customers that are DoS magnets for some reason.
Current thread:
- Provider-based DDoS Protection Services John Neiberger (Jul 28)
- <Possible follow-ups>
- Re: Provider-based DDoS Protection Services Fergie (Paul Ferguson) (Jul 28)
- Re: Provider-based DDoS Protection Services John Neiberger (Jul 28)
- Re: Provider-based DDoS Protection Services Florian Weimer (Jul 29)
- Re: Provider-based DDoS Protection Services Suresh Ramasubramanian (Jul 29)
- Re: Provider-based DDoS Protection Services Florian Weimer (Jul 29)
- Re: Provider-based DDoS Protection Services Petri Helenius (Jul 29)
- Re: Provider-based DDoS Protection Services Suresh Ramasubramanian (Jul 29)
- Re: Provider-based DDoS Protection Services John Neiberger (Jul 28)
- Re: Provider-based DDoS Protection Services John Neiberger (Jul 28)
- Re: Provider-based DDoS Protection Services James Feger (Jul 28)
- Re: Provider-based DDoS Protection Services John Neiberger (Jul 28)
- Re: Provider-based DDoS Protection Services chip (Jul 28)