[j-nsp] Juniper Product against DDoS
joel jaeggli
joelja at bogus.com
Tue Feb 18 20:18:01 EST 2014
On 2/18/14, 4:43 PM, Dobbins, Roland wrote:
>
> On Feb 19, 2014, at 7:10 AM, Darius Jahandarie
> <djahandarie at gmail.com> wrote:
>
>> It is worth pointing out that no transit providers actually accept
>> flowspec.
>
> Some transit providers do in fact utilize flowspec, keeping in mind
> various implementation and performance issues. I don't know of any
> who accept it from downstream customers, but that doesn't mean there
> aren't any, of course.
some experience with labbing it says you don't know which or when
flowsec route insertion is going to cause aberrant performance. In the
optimistic case that means at a minimum you want the operation of the
router and the flowspec to be coordinated because remediation may be
required.
> -----------------------------------------------------------------------
>
>
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
>
> Luck is the residue of opportunity and design.
>
> -- John Milton
>
>
> _______________________________________________ juniper-nsp mailing
> list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 308 bytes
Desc: OpenPGP digital signature
URL: <https://puck.nether.net/pipermail/juniper-nsp/attachments/20140218/be85197d/attachment.sig>
More information about the juniper-nsp
mailing list