nanog mailing list archives

Re: UDP port 80 DDoS attack

From: "Dobbins, Roland" <rdobbins () arbor net>
Date: Mon, 6 Feb 2012 01:20:11 +0000


On Feb 6, 2012, at 8:10 AM, Keegan Holley wrote:

An entire power point just to recommend ACL's, uRPF, CPP, DHCP snooping, and RTBH?


Actually, no, that isn't the focus of the preso.

The first four will not work against a DDOS attack


This is incorrect - suggest you read the preso.

and the last one just kills the patient so he does not infect other patients.


S/RTBH - as opposed to D/RTBH - doesn't kill the patient.  Again, suggest you read the preso.

There's been a lot of discussion on this topic on NANOG, suggest you take a look through the archives.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

                The basis of optimism is sheer terror.

                          -- Oscar Wilde

Current thread:

UDP port 80 DDoS attack Ray Gasnick III (Feb 05)
- Re: UDP port 80 DDoS attack Fredrik Holmqvist / I2B (Feb 05)
  - RE: UDP port 80 DDoS attack Drew Weaver (Feb 08)
- Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
  - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 05)
    - Re: UDP port 80 DDoS attack Dobbins, Roland (Feb 05)
    - Re: UDP port 80 DDoS attack bas (Feb 07)
    - RE: UDP port 80 DDoS attack George Bonser (Feb 08)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 08)
    - RE: UDP port 80 DDoS attack George Bonser (Feb 08)
    - Re: UDP port 80 DDoS attack Keegan Holley (Feb 08)

(Thread continues...)