FYI: RFC 3882 on Configuring BGP to Block Denial-of-Service Attacks

Christopher L. Morrow christopher.morrow at mci.com
Sat Oct 2 02:28:43 UTC 2004


On Sat, 2 Oct 2004, Christopher L. Morrow wrote:
> On Sat, 2 Oct 2004, Fergie (Paul Ferguson) wrote:
>
> > Given recent discussions on blackholing traffic, this may
> > be of interest.

> > communities to remotely trigger black-holing of a particular
> > destination network to block denial-of-service attacks.  Black-holing
> > can be applied on a selection of routers rather than all BGP-speaking
> > routers in the network.  The document also describes a sinkhole tunnel
>
> This tunneling is 'centertrack' which is patented... Also, tunneling is a
> dangerous prospect when you get very large amounts of attack traffic.

hrm... unless Robert can send the Patent No. I think I was mistaken,
CenterTrack wasn't patented, though I could swear it was...

-Chris



More information about the NANOG mailing list