nanog mailing list archives

Re: UDP port 80 DDoS attack

From: Keegan Holley <keegan.holley () sungard com>
Date: Sun, 5 Feb 2012 20:10:39 -0500

An entire power point just to recommend ACL's, uRPF, CPP, DHCP snooping,
and RTBH?  The first four will not work against a DDOS attack and the last
one just kills the patient so he does not infect other patients.  As I said
earlier beyond traffic scrubbing offsite there isn't much defense against
DDOS.

2012/2/5 Dobbins, Roland <rdobbins () arbor net>


On Feb 6, 2012, at 7:21 AM, Keegan Holley wrote:

There aren't very many ways to combat DDOS.


Start with the various infrastructure/host/service BCPs, and S/RTBH, as
outlined in this preso:

<https://files.me.com/roland.dobbins/dweagy>

-----------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

               The basis of optimism is sheer terror.

                         -- Oscar Wilde

Current thread:

UDP port 80 DDoS attack Ray Gasnick III (Feb 05)
- Re: UDP port 80 DDoS attack Fredrik Holmqvist / I2B (Feb 05)
  - RE: UDP port 80 DDoS attack Drew Weaver (Feb 08)
- Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
  - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack bas (Feb 07)
    - RE: UDP port 80 DDoS attack George Bonser (Feb 08)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 08)
    - RE: UDP port 80 DDoS attack George Bonser (Feb 08)

(Thread continues...)