nanog mailing list archives
Re: about udp 80,8080,0
From: "Dobbins, Roland" <rdobbins () arbor net>
Date: Tue, 9 Feb 2010 12:16:06 +0000
On Feb 9, 2010, at 6:57 PM, 최종훈 wrote:
Is there anyone who have experiences controlling udp port 8,8080,0 ? rate-limiting or block!
Not a good idea to use rate-limiting to deal with DDoS attacks - the programmatically-generated bad traffic ends up crowding out legitimate traffic. All kinds of online games (many very popular in the RoK) make use of various UDP high ports; one never knows what applications users are running, so simply blocking ports isn't generally a good idea. S/RTBH and/or an IDMS are a couple of different ways to mitigate DDoS attacks. See this presentation for some BCPs: <http://files.me.com/roland.dobbins/k54qkv> ----------------------------------------------------------------------- Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com> Injustice is relatively easy to bear; what stings is justice. -- H.L. Mencken
Current thread:
- about udp 80,8080,0 최종훈 (Feb 09)
- Re: about udp 80,8080,0 Dobbins, Roland (Feb 09)
- Re: about udp 80,8080,0 Michael Holstein (Feb 09)
- Re: about udp 80,8080,0 Jeffrey Lyon (Feb 09)
- Re: about udp 80,8080,0 Truman Boyes (Feb 10)
- Re: about udp 80,8080,0 Jeffrey Lyon (Feb 09)