nanog mailing list archives
Re: Mitigating HTTP DDoS attacks?
From: Roland Dobbins <rdobbins () cisco com>
Date: Tue, 25 Mar 2008 05:18:20 +0700
On Mar 25, 2008, at 5:02 AM, Mike Lyon wrote:
Any input would be greatly appreciated.
There are devices available today from different vendors (including Cisco, full disclosure) which are intelligent DDoS-'scrubbers' and which can deal with more sophisticated types of attacks at layer-7, including HTTP and DNS. S/RTBH is also an option, keeping in mind some of the caveats you mentioned (staying mindful of attacking hosts behind proxies, botted hosts of legit customers, et. al.).
-----------------------------------------------------------------------
Roland Dobbins <rdobbins () cisco com> // +66.83.266.6344 mobile
It doesn't pay to dispute what you know to be true.
-- Fred Reed
Current thread:
- Mitigating HTTP DDoS attacks? Mike Lyon (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Roland Dobbins (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Tim Yocum (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Roland Dobbins (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Tim Yocum (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Paul Vixie (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Mike Lewinski (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Barney Wolff (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Peter Dambier (Mar 25)
- Re: Mitigating HTTP DDoS attacks? Paul Wall (Mar 25)
- Re: Mitigating HTTP DDoS attacks? Roland Dobbins (Mar 24)
- RE: Mitigating HTTP DDoS attacks? Frank Bulk - iNAME (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Roland Dobbins (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Rodrick Brown (Mar 24)