nanog mailing list archives

Re: Filtering ICMP (Was Re: SMURF amplifier block list)

From: Michael Dillon <michael () memra com>
Date: Fri, 24 Apr 1998 12:08:58 -0700 (PDT)

On Thu, 23 Apr 1998, Jason Lixfeld wrote:

Then how do you propose to effectively block smurf coming IN?  You are
totally asking for it if you need to rely on your upstreams to protect
you.


You cannot block SMURF coming in. Once it has travelled down your DS3 to
your router it has already done damage to your connectivity. Only your
upstream can prevent the SMURF packets from coming down your DS3. The
solution for the victim is to work with their upstream to rapidly block
*AND* *TRACE* the perps.

--
Michael Dillon                   -               Internet & ISP Consulting
http://www.memra.com             -               E-mail: michael () memra com

Current thread:

Re: Filtering ICMP (Was Re: SMURF amplifier block list), (continued)
- - - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Michael Dillon (Apr 20)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Michael Shields (Apr 22)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Alex P. Rudnev (Apr 21)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) D'Arcy J.M. Cain (Apr 22)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Alex P. Rudnev (Apr 21)
    - Message not available
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Eric Germann (Apr 21)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Jason Lixfeld (Apr 24)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Pete Ashdown (Apr 24)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Richard Irving (Apr 24)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Brandon Ross (Apr 26)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Michael Dillon (Apr 24)
    - Re: Filtering ICMP (Was Re: SMURF amplifier block list) Mark Whitis (Apr 26)
    - Re: SMURF amplifier block list Dean Anderson (Apr 18)
    - Re: SMURF amplifier block list Phil Howard (Apr 18)
    - Message not available
    - Re: SMURF amplifier block list Jay R. Ashworth (Apr 19)
    - Re: SMURF amplifier block list Alex P. Rudnev (Apr 20)
    - Re: SMURF amplifier block list jlixfeld (Apr 20)
    - Re: SMURF amplifier block list Dean Anderson (Apr 19)
    - Re: SMURF amplifier block list Jason Lixfeld (Apr 24)
    - Re: SMURF amplifier block list Dean Anderson (Apr 24)
    - Re: SMURF amplifier block list Stephen Sprunk (Apr 17)

(Thread continues...)