Ransom DDoS attack - need help!

Roland Dobbins rdobbins at arbor.net
Thu Dec 10 06:51:45 UTC 2015

On 10 Dec 2015, at 13:21, Joe Morgan wrote:

> We have custom in house software that watches the traffic flows from 
> our edge routers and automatically blackholes any ip getting targeted.

Suggest you take a look at the presos I posted earlier and look into 
S/RTBH, flowspec, some limited QoS, and some preemptive ACLs so that you 
aren't forced into completing the DDoS.

Roland Dobbins <rdobbins at arbor.net>

More information about the NANOG mailing list