nanog mailing list archives

Re: isprime DOS in progress

From: Noel Butler <noel.butler () ausics net>
Date: Sat, 24 Jan 2009 11:50:24 +1000

On Sat, 2009-01-24 at 07:21, Chris McDonald wrote:

We [AS3491] null0'd the IP earlier.  Rest-of-world encouraged to do the same :/




Wrong approach, they are *innocent* in this as are the new targets.

insert into your favourite acl:
deny udp host 66.230.160.1 neq 53 any eq 53
deny udp host 66.230.128.15 neq 53 any eq 53

But it's much less work to add a filter on the name server as others
have mentioned.

Current thread:

Re: isprime DOS in progress, (continued)
- - - Re: isprime DOS in progress Graeme Fowler (Jan 21)
    - RE: isprime DOS in progress Justin Krejci (Jan 21)
    - Re: isprime DOS in progress, and Re: DNS Amplification attack? Dale Carstensen (Jan 21)
    - Re: isprime DOS in progress Harald Koch (Jan 21)
    - Re: isprime DOS in progress Bjørn Mork (Jan 22)
    - Re: isprime DOS in progress Phil Rosenthal (Jan 23)
    - RE: isprime DOS in progress Steven Lisson (Jan 23)
    - Re: isprime DOS in progress Joe Abley (Jan 23)
    - RE: isprime DOS in progress Luke Sheldrick (Jan 23)
    - Re: isprime DOS in progress Chris McDonald (Jan 23)
    - Re: isprime DOS in progress Noel Butler (Jan 23)
    - Are we really this helpless? (Re: isprime DOS in progress) Seth Mattinen (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Jeffrey Lyon (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Gadi Evron (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Seth Mattinen (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Valdis . Kletnieks (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Jamie A Lawrence (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Christopher Morrow (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Danny McPherson (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) David Conrad (Jan 23)
    - Re: Are we really this helpless? (Re: isprime DOS in progress) Danny McPherson (Jan 23)

(Thread continues...)