nanog mailing list archives
Re: Mitigating HTTP DDoS attacks?
From: Roger Marquis <marquis () roble com>
Date: Mon, 24 Mar 2008 18:58:03 -0700 (PDT)
Mike Lyon wrote:
So, i'm kind of new to this so please deal with my ignorance. But, what is common practice these days for HTTP DDoS mitigation during an attack? You can of course route every offending ip address to null0 at your border. But, if it's a botnet or trojan or something, It's coming from numerous different source IPs and Null0 routes can get very cumbersome. obviously. How do you folk usually deal with this?
Depends a lot on the size of the network. If it's more than a few colos I highly recommend Arbor Peakflow (http://www.arbornetworks.com/). Not cheap but it works and scales well. -- Roger Marquis Roble Systems Consulting http://www.roble.com/
Current thread:
- Re: Mitigating HTTP DDoS attacks?, (continued)
- Re: Mitigating HTTP DDoS attacks? Paul Vixie (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Mike Lewinski (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Barney Wolff (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Peter Dambier (Mar 25)
- Re: Mitigating HTTP DDoS attacks? Paul Wall (Mar 25)
- Re: Mitigating HTTP DDoS attacks? Paul Vixie (Mar 24)
- RE: Mitigating HTTP DDoS attacks? Frank Bulk - iNAME (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Roland Dobbins (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Rodrick Brown (Mar 24)
- Re: Mitigating HTTP DDoS attacks? Steven M. Bellovin (Mar 25)
- RE: Mitigating HTTP DDoS attacks? Darden, Patrick S. (Mar 25)
- Re: Mitigating HTTP DDoS attacks? Roger Marquis (Mar 24)