[nsp-sec] Info share: REN-ISAC alert DNS Amplification attacks
Gabriel Iovino
giovino at ren-isac.net
Wed May 8 15:01:53 EDT 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 5/8/2013 2:39 PM, Smith, Donald wrote:
> Minor nit, BCP38 is intended to block ingress traffic not egress
> traffic. " - Apply BCP38 filtering to prevent spoofed source
> address traffic from leaving your network. "
>
> "Network Ingress Filtering: Defeating Denial of Service Attacks
> which employ IP Source Address Spoofing"
>
> So it should probably be from entering your network:)
As hard as you try to catch these little things...
thank you!!
Gabe
- --
Gabriel Iovino
Principal Security Engineer, REN-ISAC
http://www.ren-isac.net
24x7 Watch Desk +1(317)278-6630
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
iEYEARECAAYFAlGKoSAACgkQwqygxIz+pTvTOACgqbF0b+2wZOGPI0iHPLQ3uSXo
GlIAn38JQySQQNvi+wEcZkFRXyv81akZ
=/Pan
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list