[c-nsp] syn flood - port 80
Brian Turnbow
b.turnbow at twt.it
Wed Aug 4 02:43:17 EDT 2004
You can black hole it or silent drop it .
If your upstreams will help have them black hole it for you and save your
links.
-----Original Message-----
From: matthew zeier [mailto:mrz at intelenet.net]
Sent: lunedì 2 agosto 2004 21.32
To: b.turnbow at twt.it; 'Roger'; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] syn flood - port 80
What do you do when you have 800Mbps of inbound syn flood? ACLs weren't a
good option.
Null routing the destination seemed to kill it off quicker but in them
meantime, my GSRs were suffering tofab/frfab issues.
--
matthew zeier, Sr. Network Engineer | "Nothing in life is to be feared.
InteleNet Communications, Inc. | It is only to be understood."
(949) 784-7904 | - Marie Curie
More information about the cisco-nsp
mailing list