[c-nsp] syn flood - port 80
Robert A. Hayden
rhayden at geek.net
Mon Aug 2 15:57:10 EDT 2004
We use a blackhole routing system address issues like this. BH the
target. Works good if your IP is virus infected as well.
On Mon, 2 Aug 2004, matthew zeier wrote:
> What do you do when you have 800Mbps of inbound syn flood? ACLs weren't a
> good option.
> Null routing the destination seemed to kill it off quicker but in them
> meantime, my GSRs were suffering tofab/frfab issues.
> matthew zeier, Sr. Network Engineer | "Nothing in life is to be feared.
> InteleNet Communications, Inc. | It is only to be understood."
> (949) 784-7904 | - Marie Curie
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp