nanog mailing list archives
RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T
From: Pekka Savola <pekkas () netcore fi>
Date: Thu, 3 Jun 2004 09:55:11 +0300 (EEST)
On Wed, 2 Jun 2004, Michel Py wrote:
Jon R. Kibler wrote: IMHO, there is absolutely no excuse for not doing ingress and egress filtering. In fact, if you are an ISP, I would argue that you are negligent in your fiduciary responsibilities to your customers and shareholders if you are not filtering source IP addresses.Hey, I'm all for it. Where's the money and the staff?
set routing-options forwarding-table unicast-reverse-path feasible-paths set interfaces yy-x/x/x unit 0 family inet rpf-check What else do you need? Or did you buy crap that doesn't support (good) uRPF, or even doesn't support (line-rate) filtering? Change the vendors and filter at your core connecting those crappy boxes then. -- Pekka Savola "You each name yourselves king, yet the Netcore Oy kingdom bleeds." Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
Current thread:
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Michel Py (Jun 02)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Patrick W . Gilmore (Jun 02)
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Pekka Savola (Jun 02)
- <Possible follow-ups>
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Michel Py (Jun 02)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Patrick W . Gilmore (Jun 02)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Jon Lewis (Jun 02)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Alexei Roudnev (Jun 02)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Richard Cox (Jun 02)
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Edward B. Dreger (Jun 04)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Patrick W . Gilmore (Jun 02)
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Michel Py (Jun 02)
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Michel Py (Jun 02)
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Krichbaum, Eric (Jun 03)
- Message not available
- RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Daniel Senie (Jun 03)
- Message not available