nanog mailing list archives

Re: DDoS attack

From: Brandon Martin <lists.nanog () monmotha net>
Date: Mon, 9 Dec 2019 17:21:47 -0500

On 12/9/19 3:32 PM, Florian Brandstetter via NANOG wrote:

In any regard, <1 Gbps is pretty piss poor for an amplification attack too.


But, as others have pointed out, plenty to knock a single subscriber, shared access link (DOCSIS, wireless, or even 
well loaded GPON), or even a small regional PoP down.  Plenty of opportunity for mayhem even with just a couple 100Mbps 
which is trivial to come up with these days as the spread of consumer-accessible speeds keeps growing.  Keeping it 
small makes it less likely to get noticed and, perhaps even more importantly for the perpetrator, harder for the 
networks responsible for the reflection/amplification to track down the problem using traffic analysis as well as 
coming in on the lower end of the "how much do I care?" part of the abuse team's line-up.
-- 
Brandon Martin

Current thread:

Re: DDoS attack, (continued)
- Re: DDoS attack Christopher Morrow (Dec 09)
  - Re: DDoS attack Tim Požár (Dec 09)
    - Re: DDoS attack Alain Hebert (Dec 10)
  - Re: DDoS attack Mel Beckman (Dec 09)
    - Re: DDoS attack Christopher Morrow (Dec 09)
- Re: DDoS attack Filip Hruska (Dec 09)
  - Re: DDoS attack Mike Hammett (Dec 09)
  - Re: DDoS attack Florian Brandstetter via NANOG (Dec 09)
    - Re: DDoS attack Mike Lewinski (Dec 09)
    - Re: DDoS attack Töma Gavrichenkov (Dec 09)
    - Re: DDoS attack Brandon Martin (Dec 09)
    - Re: DDoS attack Sabri Berisha (Dec 09)
    - Re: DDoS attack Mark Tinka (Dec 09)
    - Re: DDoS attack Töma Gavrichenkov (Dec 10)
- Re: DDoS attack Jean | ddostest.me via NANOG (Dec 09)
- Re: DDoS attack Randy Bush (Dec 09)
- Re: DDoS attack william manning (Dec 09)
- RE: DDoS attack Paul Amaral via NANOG (Dec 10)
  - RE: DDoS attack Aaron Gould (Dec 10)
    - Re: DDoS attack Saku Ytti (Dec 10)
    - RE: [EXTERNAL] RE: DDoS attack Nikos Leontsinis (Dec 10)

(Thread continues...)