Re: Is there a line of defense against Distributed Reflective attacks?

About Merit

Services

Network

Resources & Support

Network Research

News

Events

Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Re: Is there a line of defense against Distributed Reflective attacks?

From: Brad Laue
Date: Thu Jan 16 23:58:38 2003

Christopher L. Morrow wrote:

On Thu, 16 Jan 2003, Brad Laue wrote:

[ .. ]


Doesn't ECN depend on 'well behaved' traffic? In other words, wouldn't it
require the hosts sending traffic to slow down? So... even if the hosts
slowed down, 10,000 hosts still is a high traffic rate at the end point.
:(

Good point.

I suppose another basic but effective method of prevention would be egress filtering. An increasing minority of network providers are instituting it, but it doesn't seem like it will be a widespread thing in the near-term.

--
// -- http://www.BRAD-X.com/ -- //

Follow-Ups:
- Re: Is there a line of defense against Distributed Reflective attacks? hc

References:
- Re: Is there a line of defense against Distributed Reflective attacks? Christopher L. Morrow

Prev by Date: Re: Is there a line of defense against Distributed Reflective attacks?
Next by Date: Re: Is there a line of defense against Distributed Reflective attacks?
Date Index
Thread Index
Author Index
Historical