Effective ways to deal with DDoS attacks?
Pete Kruckenberg
pete at kruckenberg.com
Thu May 2 05:56:07 UTC 2002
On Thu, 2 May 2002, Richard A Steenbergen wrote:
>> SYN packet comes in, one of these machines responses with a
>> RST to the "source", which is actually the target of the
>
> You have an interesting situation. I think rate limiting
> outbound RSTs would be the least offensive thing you
> could do, off the top of my head.
What about just blocking out-going RSTs altogether from our
borders? While this interferes with "proper" TCP
functionality, would it actually interfere enough to cause
noticeable problems? Would certainly be less of a burden on
routers than rate-limiting.
Pete.
More information about the NANOG
mailing list