nanog mailing list archives
Re: SYN spoofing
From: woods () most weird com (Greg A. Woods)
Date: Wed, 28 Jul 1999 13:31:51 -0400 (EDT)
[ On Wednesday, July 28, 1999 at 11:21:35 (-0400), Daniel Senie wrote: ]
Subject: Re: SYN spoofing I suspect most deployed routers do at least some filtering of packets on most or all interefaces. In the past, some routers couldn't do these lookups efficiently on source addresses, but that's really an implementation issue. It's *possible* to design hardware that can handle it, if there's a business case for doing so. ISPs should be interested in doing such filtering.
In fact it's easy to buy off-the-shelf hardware today that can do
wire-speed filtering, assuming one has worked such costs into the budget
of building a network backbone....
--
Greg A. Woods
+1 416 218-0098 VE3TCP <gwoods () acm org> <robohack!woods>
Planix, Inc. <woods () planix com>; Secrets of the Weird <woods () weird com>
Current thread:
- SYN spoofing bandregg (Jul 26)
- Re: SYN spoofing Dan Hollis (Jul 26)
- Re: SYN spoofing John Fraizer (Jul 28)
- Re: SYN spoofing Joe Shaw (Jul 28)
- Re: SYN spoofing Daniel Senie (Jul 28)
- Re: SYN spoofing Greg A. Woods (Jul 28)
- Re: SYN spoofing Vijay Gill (Jul 28)
- Re: SYN spoofing Wayne Bouchard (Jul 28)
- Re: SYN spoofing Daniel Senie (Jul 28)
- Re: SYN spoofing John Fraizer (Jul 28)
- Re: SYN spoofing Dan Hollis (Jul 26)
- Re: SYN spoofing Forrest W. Christian (Jul 28)
- Re: SYN spoofing Deepak Jain (Jul 28)
- Re: SYN spoofing Dan Hollis (Jul 28)
- Re: SYN spoofing batz (Jul 28)
- Re: SYN spoofing Dan Hollis (Jul 28)
- Re: SYN spoofing Jeremy Porter (Jul 28)
- Re: SYN spoofing Dan Hollis (Jul 28)