[c-nsp] Safer DDOS drops
Jon Lewis
jlewis at lewis.org
Fri Apr 8 16:36:49 EDT 2011
On Fri, 8 Apr 2011, Peter Kranz wrote:
> So today one of our customers was being hit with a DDOS attack with the
> following signature; basically a bunch of UDP junk of about 5 Gbps in
> volume..
At that traffic volume, you're probably better off with RTBH than trying
to ACL it. That way the DDoS traffic isn't congesting your transit pipes.
----------------------------------------------------------------------
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
More information about the cisco-nsp
mailing list