nanog mailing list archives

Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T

From: "Christopher L. Morrow" <christopher.morrow () mci com>
Date: Thu, 03 Jun 2004 15:25:11 +0000 (GMT)



On Thu, 3 Jun 2004, Erik Haagsman wrote:


On Wed, 2004-06-02 at 19:32, Jeff Aitken wrote:

On Wed, Jun 02, 2004 at 06:00:38PM +0200, Erik Haagsman wrote:

Only very small ISPs relying on 36xx's or multilayer switching instead
of larger, more powerful might be still valid cases where ACL's are a
problem.


Interesting assertion.  Care to support it?


It's not unusual for smaller ISP's and small hosting companies to rely
on low-spec equipment that can just deal with normal traffic flows, but
start falling apart when a traffic spike hits and access lists are
present. As an example, take a lower end IronCore Foudry switch with a


Or, look at some examples in the 6500 family even, not really a 'low end'
switch, but still able to fail spectacularly under abnormal conditions.
(provided you don't have super new Sup720 and other wizz-bang-foo hot off
the presses)

-Chris

Current thread:

RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T, (continued)
- - - RE: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Neil J. McRae (Jun 03)
  - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T jeffrey.arnold (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Iljitsch van Beijnum (Jun 02)
- Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Jon R. Kibler (Jun 02)
  - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Laurence F. Sheldon, Jr. (Jun 02)
  - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Andrew - Supernews (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Hank Nussbacher (Jun 02)
  - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Erik Haagsman (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Jeff Aitken (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Erik Haagsman (Jun 03)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Christopher L. Morrow (Jun 03)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Jeff Aitken (Jun 03)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Erik Haagsman (Jun 04)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Erik Haagsman (Jun 04)
  - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Danny McPherson (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Richard A Steenbergen (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Danny McPherson (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Richard A Steenbergen (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Danny McPherson (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Valdis . Kletnieks (Jun 02)
    - Re: Real-Time Mitigation of Denial of Service Attacks Now Available With AT&T Alexei Roudnev (Jun 02)

(Thread continues...)