Counter DoS
Petri Helenius
pete at he.iki.fi
Thu Mar 11 21:59:34 UTC 2004
Deepak Jain wrote:
>
>
> If you wanted to do that, wouldn't the firewall just need
> directed-broadcast left open or emulate similar behavior, or even
> turning ip unreachables back on?
>
> Flooding pipes accidentally is easy enough. Now people are selling
> products to do it deliberately.
>
Maybe there is a lesson to be learned from many RBL operators. To make
sure, just send packets to the whole /24 or /16 you got an "attack"
packet from.
Pete
More information about the NANOG
mailing list