nanog mailing list archives
Re: [c-nsp] DNS amplification
From: Masataka Ohta <mohta () necom830 hpcl titech ac jp>
Date: Tue, 19 Mar 2013 00:10:12 +0900
Arturo Servin wrote:
If you are the end-user organization with a multihomed topology you apply BCP38 within your own scope. This will help to have less spoofed traffic. Not solving all the problems but it would help not seeing your spoofed packets all over the Internet.
It does not help not seeing a spoofed packets with source addresses of yours.
And about the routing table size, it is not multihomed sites the offenders, it is large ISPs fragmenting because of traffic engineering or because lack of BGP knowledge.
As the number of *LARGE* ISPs is limited, it is not a problem. Masataka Ohta
Current thread:
- Re: Is multihoming hard? [was: DNS amplification], (continued)
- Re: Is multihoming hard? [was: DNS amplification] Jimmy Hess (Mar 22)
- Re: Is multihoming hard? [was: DNS amplification] William Herrin (Mar 20)
- Re: Is multihoming hard? [was: DNS amplification] Brielle Bruns (Mar 20)
- Re: Is multihoming hard? [was: DNS amplification] Andrew D Kirch (Mar 20)
- Re: [c-nsp] DNS amplification David Conrad (Mar 20)
- Re: [c-nsp] DNS amplification Sander Steffann (Mar 18)
- Re: [c-nsp] DNS amplification Masataka Ohta (Mar 18)
- Re: [c-nsp] DNS amplification Arturo Servin (Mar 18)
- Re: [c-nsp] DNS amplification Arturo Servin (Mar 18)
- Re: [c-nsp] DNS amplification Joe Abley (Mar 18)
- Re: [c-nsp] DNS amplification Masataka Ohta (Mar 18)
- Re: [c-nsp] DNS amplification Arturo Servin (Mar 18)