nanog mailing list archives

Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey

From: Roland Dobbins <rdobbins () arbor net>
Date: Tue, 27 Sep 2016 11:05:19 +0700


On 27 Sep 2016, at 6:58, Christopher Morrow wrote:

wouldn't something as simple as netflow/sflow/ipfix synthesized on theCPE and kept for ~30mins (just guessing) in a circular buffer be 'goodenough' to present a pretty clear UI to the user?


+1 for this capability in CPE.

OTOH, it will be of no use whatsoever to the user. Providing the userwith access to anomalous traffic feeds won't help, either.

Users aren't going to call in some third-party service/support company,either.

It call comes down to the network operator, one way or another. There'sno separation in the public mind of 'my network' from 'the Internet'that is analogous to the separation between 'the power company' and 'theelectrical wiring in my house/apartment' (and even in that space, theconceptual separation often isn't present).


-----------------------------------
Roland Dobbins <rdobbins () arbor net>

Current thread:

Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey, (continued)
- - - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Ca By (Sep 25)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey John R. Levine (Sep 25)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Hugo Slabbert (Sep 25)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey John Levine (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Livingood, Jason (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Christopher Morrow (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Roland Dobbins (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Roland Dobbins (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Roland Dobbins (Sep 26)
    - Message not available
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Roland Dobbins (Sep 26)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mike Hammett (Sep 27)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Alan Buxey (Sep 27)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Jared Mauch (Sep 27)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Mark Andrews (Sep 27)
    - Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey Brielle Bruns (Sep 27)

(Thread continues...)