[c-nsp] NTP DDoS

Mark Tinka mark.tinka at seacom.mu
Mon Feb 17 21:53:44 EST 2014

On Tuesday, February 18, 2014 04:29:31 AM Aaron wrote:

> My gosh!  NTP ddos attacks are coming like crazy lately. 
> Y'all getting hit ?
> I'm going to need to setup a bgp injection thingy with my
> upstream providers to signal a /32 for my victim(s) in
> my network so I can selective blackhole traffic in the
> cloud prior to it hitting my internet links..... this is
> getting really bad

It's been an issue since early last month.

Be sure to have ACL's for your NTP sessions from your 
routers/switches/AP's/e.t.c., as well as patched 
NTP/filtered servers to eliminate attack surfaces.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20140218/3f47edb3/attachment.sig>

More information about the cisco-nsp mailing list