ICANN Targets DDoS Attacks
David Conrad
david.conrad at nominum.com
Mon Nov 4 17:08:44 UTC 2002
Just to be clear:
(a) RSSAC is not an IETF working group. It is an ICANN thing and not open
to the public (last I heard)
(b) "active" in this context must be using a definition of that term that
I'm unfamiliar with.
Rgds,
-drc
On 11/4/02 3:47 PM, "bmanning at vacation.karoshi.com"
<bmanning at vacation.karoshi.com> wrote:
>
>
> yes. this is a topic of active discussion within
> the RSSAC.
>
>
>>
>>
>> is any active working group persuing this matter seriously?
>>
>> -rgds
>> Alok
>> ----- Original Message -----
>> From: alok <alok.dube at apara.com>
>> To: <cjclark at alum.mit.edu>; <Valdis.Kletnieks at vt.edu>
>> Sent: Saturday, November 02, 2002 4:26 AM
>> Subject: Re: ICANN Targets DDoS Attacks
>>
>>
>>
>>
>>> The first, dropping broadcasts destined to your customers, is possibly
>>> doable, but not trivial.
>>
>> ------> IGP learnt networks .. a small tweaky bit which learns broadcast
>> addresses via the networks in the IGP wud help (again summarization wud make
>> it bad)
>>
>>> The second, catching all broadcasts coming
>>> in, out, or just passing through, is pretty much impossible.
>>
>> -----> a very small percentage cud be blocked if u were willing to link this
>> to BGP learnt networks..at least those are "complete networks", not
>> subnetted....
>>
>> ofcourse its a very small portion, mebbe u cud ask guys to send more
>> specific BGP routes from now....
>>
>> -A
>>
>>
>>
>>
>>
>
More information about the NANOG
mailing list