DNS DDoS [was: register.com down sev0?]

jerry at jdixon.com jerry at jdixon.com
Thu Oct 26 17:32:56 UTC 2006

The network hardware vendors do need to include the feature to support BCP-38.  It'll help us out on a number of fronts especially with some of the recent cyber attacks.  

We're in process of reaching out to many of the companies and many providers to encourage the implementation of BCP-38.  We've gotten a lot of great feedback from many of you and its greatly appreciated.  You know who you are :)
Especially some of the feedback related to the hardware OS issues.

Jerry at jdixon.com or jerry.dixon at us-cert.gov

Sent via BlackBerry from Cingular Wireless  

-----Original Message-----
From: Robert Boyle <robert at tellurian.com>
Date: Thu, 26 Oct 2006 12:04:03 
To:"Patrick W. Gilmore" <patrick at ianai.net>, nanog at merit.edu
Subject: Re: DNS DDoS [was: register.com down sev0?]

At 11:21 AM 10/26/2006, you wrote:
Unfortunately, as Jared has pointed out, the equipment vendors have
>to help the operators support this.  So let's all call your favorite
>router vendor and ask them when they will have the "ip bcp38" config
>option. :)

Even better would be the option: "no ip bcp38"

Make it so a conscious action is needed to disable it, but PLEASE put 
that in the release notes so when the config doesn't "change" we know 
that something really did change... :)


Tellurian Networks - Global Hosting Solutions Since 1995
http://www.tellurian.com | 888-TELLURIAN | 973-300-9211
"Well done is better than well said." - Benjamin Franklin

More information about the NANOG mailing list