nanog mailing list archives
Re: DDoS detection and mitigation systems
From: Alex Yuriev <alex () yuriev com>
Date: Mon, 3 Nov 2003 08:36:38 -0500 (EST)
Do you use/develop in-house tools to analyze Netflow on your peering routers and have that interface in near-realtime with the said routers to null route (BGP and RPF) the offending sources?
Source or destination? Null routing source of DOS is not going to do you any good. Null routing destination, especially automatically null routing destination, creates a large possibility of shooting yourself in a foot. Alex
Current thread:
- DDoS detection and mitigation systems Mailing List Subscriptions (Nov 02)
- Re: DDoS detection and mitigation systems Alex Yuriev (Nov 03)
- Re: DDoS detection and mitigation systems Christopher L. Morrow (Nov 03)
- Re: DDoS detection and mitigation systems Alex Yuriev (Nov 03)