nanog mailing list archives

Re: Over a decade of DDOS--any progress yet?

From: Jack Bates <jbates () brightok net>
Date: Mon, 13 Dec 2010 10:15:00 -0600

On 12/13/2010 8:32 AM, Jared Mauch wrote:

Or just buy a gig-e from cogent at 3$/meg/mo (or is it $4 this
month?) to burn for ddos.

*cough* 10G burstable with 1-2G commit. Still cheaper than anything else
I have or can get, and more likely to handle those large DDOS cases,
where you can just reroute the effected network through the 10G and
mitigate with whatever hardware you have.

Of course everyone is willing to sell you a seven-figure "solution"
for your problems, but once you actually start talking about the
usability, ease of provisioning, and the customer education about the
caveats most people start to glaze quickly.

Even with the right gear, technology, etc.. the vendors don't make it
easy to deliver these solutions.

True, but they often will dedicate some time and effort during an attackto make things work. There are many in-house custom solutions you canuse, and we've seen public blacklists use many of them over the years.If you want the extra support during the crisis, you pay the 3rd partyfor their product to get it.



Jack

Current thread:

RE: Over a decade of DDOS--any progress yet?, (continued)
- - - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Christopher Morrow (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Aaron Glenn (Dec 11)
    - Re: Over a decade of DDOS--any progress yet? Christopher Morrow (Dec 11)
    - Re: Over a decade of DDOS--any progress yet? Loránd Jakab (Dec 13)
    - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Christopher Morrow (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Kevin Oberman (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Christopher Morrow (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Jared Mauch (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Jack Bates (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Jared Mauch (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Bill Bogstad (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Jeffrey Lyon (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 13)
    - Re: Over a decade of DDOS--any progress yet? Matthew Petach (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
    - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 10)
    - Re: Over a decade of DDOS--any progress yet? Thomas Mangin (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Thomas Mangin (Dec 09)

(Thread continues...)