nanog mailing list archives
Re: Cisco - ip verify unicast reverse-path
From: Paul Ferguson <ferguson () cisco com>
Date: Mon, 14 Feb 2000 20:12:12 -0500
At 04:41 PM 02/14/2000 -0800, Alberto U. Begliomini wrote:
If I limit the SYN traffic to 8kbs to host 10.0.0.1 like in the example, I havea DoS right there. Let's say the host I am CAR SYN is a web server instead, then an attacker just need to send 8kps of SYN traffic to prevent any useful access to my web server. Or am I missing something here?
The important thing to take away from this example is that you have a tool to rate-limit traffic. How you set the thresholds is an exercise for the reader. :-) - paul
Current thread:
- Cisco - ip verify unicast reverse-path trall (Feb 12)
- Re: Cisco - ip verify unicast reverse-path Paul Ferguson (Feb 12)
- Re: Cisco - ip verify unicast reverse-path Craig A. Huegen (Feb 12)
- Message not available
- Re: Cisco - ip verify unicast reverse-path Paul Ferguson (Feb 14)
- Re: Cisco - ip verify unicast reverse-path Paul Ferguson (Feb 12)
- Re: Cisco - ip verify unicast reverse-path Mark Prior (Feb 13)
- <Possible follow-ups>
- RE: Cisco - ip verify unicast reverse-path Paul Ferguson (Feb 12)
- Message not available
- Message not available
- RE: Cisco - ip verify unicast reverse-path Paul Ferguson (Feb 13)
- Message not available