nanog mailing list archives

Re: Lazy network operators

From: Niels Bakker <niels=nanog () bakker net>
Date: Fri, 16 Apr 2004 18:44:05 +0200

On the other hand, we've had DDoS prevention mechanisms (based on
multiple rate-limiters, for different kinds of packets) deployed for
over 6 months now.  They seem to work just fine, are always active,
and require no state in the network.


* paul () vix com (Paul Vixie) [Fri 16 Apr 2004, 17:14 CEST]:

you know how to rate-limit without state in the network?  please explain.


Unlike PNAT, you don't need to look at packets traveling both ways.
This is a plus, I suppose.


        -- Niels.

Current thread:

Re: Lazy network operators - NOT, (continued)
- - - Re: Lazy network operators - NOT Sean Donelan (Apr 19)
    - Re: Lazy network operators - NOT Matt Hess (Apr 18)
    - Re: Lazy network operators - NOT Alexei Roudnev (Apr 18)
  - Re: Lazy network operators Michael . Dillon (Apr 14)
    - Re: Lazy network operators Joel Jaeggli (Apr 14)
  - Re: Lazy network operators Paul Vixie (Apr 14)
    - Re: Lazy network operators Iljitsch van Beijnum (Apr 15)
    - Re: Lazy network operators Paul Vixie (Apr 15)
    - Re: Lazy network operators Pekka Savola (Apr 16)
    - Re: Lazy network operators Paul Vixie (Apr 16)
    - Re: Lazy network operators Niels Bakker (Apr 16)
    - Re: Lazy network operators Iljitsch van Beijnum (Apr 16)
    - Re: Lazy network operators Paul Vixie (Apr 16)
    - Re: Lazy network operators Petri Helenius (Apr 16)
    - Re: Lazy network operators Iljitsch van Beijnum (Apr 16)
    - Re: Lazy network operators Petri Helenius (Apr 16)
    - Re: Lazy network operators Paul Jakma (Apr 17)
    - Re: Lazy network operators Paul Vixie (Apr 17)
    - Re: Lazy network operators Kurt Erik Lindqvist (Apr 20)
- RE: Lazy network operators Eric Krichbaum (Apr 13)
- RE: Lazy network operators Michel Py (Apr 13)

(Thread continues...)