White House to Propose System for Wide Monitoring of Internet (fwd)

Haesu haesu at towardex.com
Mon Dec 23 00:45:10 UTC 2002

On Sun, 22 Dec 2002, Sean Donelan wrote:
> On Fri, 20 Dec 2002, batz wrote:
> > Lets say you have a an IDS load balancer sitting on a GigE span
> > port with a few sensors watching everything go by. If an alert is
> > triggered, a script is executed which goes out to the router closest
> > to the origin of the session and initiates the overlaid tunnel.
> On any major backbone the IDS function becomes
> GlobalIDSFunction() {
>    While (1) {
> 	printf("Attack Detected!");
>    }
> }

An overlaid tunnel initiates each time THIS MANY attack is detected?
Wow... I'd imagine...:

System restarted by error - a Software forced crash, PC 0x602E3780



> Do you really want an automatic wiretap installed on your line
> every time an attack is detected?  Have you recently connected a
> system to the Internet that hasn't been attacked?

More information about the NANOG mailing list