nanog mailing list archives

Re: VoIP Provider DDoSes

From: Eric Kuhnke <eric.kuhnke () gmail com>
Date: Tue, 21 Sep 2021 19:09:07 -0400

Unlike http based services which can be placed behind cloudflare or
similar, harder to protect sip trunking servers.

The provider in question makes use of third party hosting services for each
of their cities' POPs. It is my understanding that for the most part they
do not run their own infrastructure but either rent dedicated servers or a
few rack units of Colo in each city.

I question whether some or any of those hosting companies have sufficient
inbound (200-400Gbps) capacity to weather a moderately sized DDoS.



On Tue, Sep 21, 2021, 5:30 PM Mike Hammett <nanog () ics-il net> wrote:

As many may know, a particular VoIP supplier is suffering a DDoS.
https://twitter.com/voipms

Are your garden variety DDoS mitigation platforms or services equipped to
handle DDoSes of VoIP services? What nuances does one have to be cognizant
of? A WAF doesn't mean much to SIP, IAX2, RTP, etc.



-----
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com

Midwest-IX
http://www.midwest-ix.com

Current thread:

VoIP Provider DDoSes Mike Hammett (Sep 21)
- Re: VoIP Provider DDoSes Jared Geiger (Sep 21)
- Re: VoIP Provider DDoSes Eric Kuhnke (Sep 21)
  - Re: VoIP Provider DDoSes Michael Thomas (Sep 21)
    - Re: VoIP Provider DDoSes Brandon Svec via NANOG (Sep 21)
    - Re: VoIP Provider DDoSes Michael Thomas (Sep 21)
    - Re: VoIP Provider DDoSes james jones (Sep 21)
  - Re: VoIP Provider DDoSes Mike Hammett (Sep 21)
- Re: VoIP Provider DDoSes Mike Hammett (Sep 22)
  - Re: EXTERNAL: Re: VoIP Provider DDoSes Ray Orsini (Sep 22)
    - Re: EXTERNAL: Re: VoIP Provider DDoSes K. Scott Helms (Sep 22)
    - Re: EXTERNAL: Re: VoIP Provider DDoSes Mike Hammett (Sep 27)
    - Re: EXTERNAL: Re: VoIP Provider DDoSes Eric Kuhnke (Sep 28)

(Thread continues...)