On Sun, 1 Apr 2001, Basil Kruglov wrote:
> I'm sure a lot of people on this list can go on and on like, buttom
> line is there is no solution to the problem, still *there is* something
> all of us can do:
>
> http://www.cisco.com/public/cons/isp/documents/uRPF_Enhancement.pdf
>
> Placing this on inbounds could help drive away completely spoofed,
> random src attacks, I can add from my own expirience only <20% of the DoS
> traffic was going through to the dst, during real-life attacks.
>
> Placing this at edge where customers are would drive the spoofed traffic
> to null0, something that shouldn't be coming in in the first place.
>
> And it's only going to get worse over time. :\ The best one could do is build
> completely new IP network from the ground up with all the "right" features,
> build customer base, connect to major peering points and deal directly
> with your peers.
>
> I apologize for perhaps off-topic post, just have this "been there, done that"
> syndrom. Feel free to drop hate-emails off this list.
>
> -Basil
> P.S. I speak for myself and only for myself.
>
Agreed and signed...
- One more Basil ;)
This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:34 EDT