DDoS mitigation recommendations

Tom Sands tsands at rackspace.com
Thu Jan 28 06:01:15 CST 2010


> -----Original Message-----
> From: David Freedman [mailto:david.freedman at uk.clara.net] 
> Sent: Tuesday, January 26, 2010 8:17 AM
> To: nanog at nanog.org
> Subject: Re: DDoS mitigation recommendations
> 
>> Arbor stuff comes to mind and works very well in our experiences....
> 
> Arbor++
> 
> 

We've already done an initial trial with the Arbor device, and it does 
work well.  Our biggest sticking point with it is that it lacks the 
granular level of visibility and control that we've been used to and 
often needed to tweak profiles.  Basically, it does what it's supposed 
to well, but you really can't tell what that is, and if it's not 
catching all of a DDoS you have little insight as to what's being missed 
or control to correct it.

Thank you,

Tom Sands
Chief Network Engineer
Rackspace


Confidentiality Notice: This e-mail message (including any attached or
embedded documents) is intended for the exclusive and confidential use of the
individual or entity to which this message is addressed, and unless otherwise
expressly indicated, is confidential and privileged information of Rackspace.
Any dissemination, distribution or copying of the enclosed material is prohibited.
If you receive this transmission in error, please notify us immediately by e-mail
at abuse at rackspace.com, and delete the original message.
Your cooperation is appreciated.





More information about the NANOG mailing list