Intrusion Detection recommendations

Darden, Patrick Patrick.Darden at p66.com
Thu Feb 19 14:07:18 UTC 2015


+10

The original SANS DDOS task force, and many others since, have emphasized this.  Filter your Outbound!  Bogons for obvious reasons, BGP3 to keep routing multipliers, non-internals to keep from being used as an amplifier network, the list goes on.  Be a good network neighbor.

--p

-----Original Message-----
From: NANOG [mailto:nanog-bounces at nanog.org] On Behalf Of Rich Kulawiec
Sent: Saturday, February 14, 2015 4:29 PM
To: nanog at nanog.org
Subject: [EXTERNAL]Re: Intrusion Detection recommendations
.
.
.
This reminds me to bring up a point that can't be stressed enough:
it's just as important to block *outbound* traffic as inbound.  Ask Anthem.  Or Target.  Or the ghosts of the Trojans. ;)
.
.
.
.



More information about the NANOG mailing list