nanog mailing list archives
Re: Anyone seeing ping corruption?
From: Sean Donelan <sean () donelan com>
Date: Mon, 20 Dec 2021 18:17:07 -0500 (EST)
On Mon, 20 Dec 2021, Steven Champeon wrote:
on Mon, Dec 20, 2021 at 04:50:00PM -0500, Sean Donelan wrote:Assuming (not confirmed) mitigating old-style DOS attacks. See "ping of death."Are there even enough dialup connections and ancient modems left that POD is a thing anyone needs to worry about?
Likely not. But ICMP is spoofable, and anyone operating extremely large attack bounce points, should try to mitigate the attack potential. Limiting ICMP responses, DNS answers, reducing SYN retries, gratuitous firewall RSTs, etc, etc.
But I'm just guessing why Google does it. I don't know, and unless a googler is willing to share; we won't ever know. Sometimes I disagree with their reasons, but google usually has a reason.
Oh, and also every network operator should implement source address validation (beating the dead horse, for the nanog mail topic moderators).
Current thread:
- Anyone seeing ping corruption? Deepak Jain (Dec 09)
- Re: Anyone seeing ping corruption? Lukas Tribus (Dec 09)
- Re: Anyone seeing ping corruption? J Doe (Dec 20)
- Re: Anyone seeing ping corruption? Sean Donelan (Dec 20)
- Re: Anyone seeing ping corruption? Steven Champeon (Dec 20)
- Re: Anyone seeing ping corruption? Sean Donelan (Dec 20)
- Re: Anyone seeing ping corruption? Valdis Klētnieks (Dec 20)
- Re: Anyone seeing ping corruption? Masataka Ohta (Dec 21)
- Re: Anyone seeing ping corruption? Bjørn Mork (Dec 21)
- Re: Anyone seeing ping corruption? Masataka Ohta (Dec 21)
- Re: Anyone seeing ping corruption? J Doe (Dec 20)
- Re: Anyone seeing ping corruption? Lukas Tribus (Dec 09)
- Re: Anyone seeing ping corruption? Jon Lewis (Dec 20)
- Re: Anyone seeing ping corruption? Hank Nussbacher (Dec 20)
- Re: Anyone seeing ping corruption? Mark Tinka (Dec 21)
- Re: Anyone seeing ping corruption? Sean Donelan (Dec 21)
- Re: Anyone seeing ping corruption? Lukas Tribus (Dec 21)