nanog mailing list archives
Re: How do you stop outgoing spam?
From: Eliot Lear <lear () cisco com>
Date: Mon, 09 Sep 2002 18:15:12 -0700
Rafi Sadowsky wrote:
Maybe I'm missing something obvious but do how you get rate-limiting per TCP *flow* with Cisco IOS ?
There is something called flow-based RED (FRED) but it consumes a whole lot of memory because you have to keep track of lots more state. I don't know about that code. At the least what you can do is use the rate-limit command and rate limit *all* outbound TCP/80 traffic (or for that matter all access-list captured traffic). Now, doing so will make any but the most trivial outbound TCP/80 absolutely painful, and will cause tail drop. See Cathy Wittbrodt's work in this space, which was presented at NANOG some time ago.
Note, I'm not saying you should *do* this. It may be going a bit too far for anti-spam.
Eliot
Current thread:
- Re: How do you stop outgoing spam?, (continued)
- Re: How do you stop outgoing spam? Rafi Sadowsky (Sep 09)
- Re: How do you stop outgoing spam? Brad Knowles (Sep 09)
- Re: How do you stop outgoing spam? John M. Brown (Sep 09)
- Re: How do you stop outgoing spam? Brad Knowles (Sep 09)
- Re: How do you stop outgoing spam? Scott Francis (Sep 17)
- Re: How do you stop outgoing spam? Brad Knowles (Sep 17)
- Re: How do you stop outgoing spam? Scott Francis (Sep 18)
- Re: How do you stop outgoing spam? Brad Knowles (Sep 09)
- Re: How do you stop outgoing spam? Eliot Lear (Sep 09)
- Re: How do you stop outgoing spam? Rafi Sadowsky (Sep 09)
- Re: How do you stop outgoing spam? Eliot Lear (Sep 09)
- Re: How do you stop outgoing spam? Scott Francis (Sep 17)
- Re: How do you stop outgoing spam? John M. Brown (Sep 09)
- Re: How do you stop outgoing spam? alex (Sep 10)
- Re: How do you stop outgoing spam? Valdis . Kletnieks (Sep 10)
- Re: How do you stop outgoing spam? Iljitsch van Beijnum (Sep 10)
- Re: How do you stop outgoing spam? Valdis . Kletnieks (Sep 10)
- Re: How do you stop outgoing spam? Iljitsch van Beijnum (Sep 10)