[c-nsp] creation of flows for acl-deined traffic - Sup2T
Jiri Prochazka
jiri.prochazka at superhosting.cz
Mon Sep 23 11:15:28 EDT 2013
Roland,
I am aware of all disadvantages of this approach. But as soon as there
is some DDoS going through respective box, it's netflow capacity is
absolutely overwhelmed, thus not creating 'standard' flows.
The other major issue is that overwhelmed netflow on Sup2T causes the
box to stop responding to SNMP queries.. :/
Thank you,
Jiri
Dne 23.9.2013 17:01, Dobbins, Roland napsal(a):
>
> On Sep 23, 2013, at 9:57 PM, Jiri Prochazka wrote:
>
>> Is this doable?
>
> It's not a good idea, as you lose visibility into traffic which you're blocking, but which is still chewing up link capacity and pummeling your boxen.
>
> -----------------------------------------------------------------------
> Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
>
> Luck is the residue of opportunity and design.
>
> -- John Milton
>
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
More information about the cisco-nsp
mailing list