nanog mailing list archives

Re: New Internet-draft on DDOS defense...

From: Brandon Ross <bross () netrail net>
Date: Fri, 12 May 2000 07:53:14 -0400 (EDT)


On Thu, 11 May 2000, Owen DeLong wrote:

Right answer, wrong reason.  The originating host will be easy to identify
because the MAC address of the originating machine of the ECHO-REQUEST
packets will be contained in the packets.


I have to strongly disagree, MAC addresses don't make it across router
boundaries, source IP addresses do.

Brandon Ross                                                 404-522-5400
VP Engineering, NetRail                            http://www.netrail.net
AIM:  BrandonNR                                             ICQ:  2269442
Read RFC 2644!
Stop Smurf attacks!  Configure your router interfaces to block directed
broadcasts. See http://www.quadrunner.com/~chuegen/smurf.cgi for details.

Current thread:

Re: New Internet-draft on DDOS defense..., (continued)
- Re: New Internet-draft on DDOS defense... Paul Ferguson (May 11)
  - Re: New Internet-draft on DDOS defense... Daniel Senie (May 11)
    - Re: New Internet-draft on DDOS defense... Paul Ferguson (May 11)
- Re: New Internet-draft on DDOS defense... Brett Frankenberger (May 11)
  - Re: New Internet-draft on DDOS defense... Paul Ferguson (May 12)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 11)
  - Re: New Internet-draft on DDOS defense... Brandon Ross (May 11)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 11)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 12)
  - Re: New Internet-draft on DDOS defense... Jerry Scharf (May 12)
- Re: New Internet-draft on DDOS defense... Brandon Ross (May 12)
- Re: New Internet-draft on DDOS defense... Steven M. Bellovin (May 12)
- Re: New Internet-draft on DDOS defense... Owen DeLong (May 12)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 16)
- Re: New Internet-draft on DDOS defense... Richard Steenbergen (May 19)