Dyn DDoS this AM?

Daniel Ankers md1clv at md1clv.com
Sat Oct 22 16:20:38 UTC 2016


On 22 October 2016 at 16:40, marcel.duregards--- via NANOG <nanog at nanog.org>
wrote:

> What about BCP38+84 on 30 tier-1 instead of asking/hoping 55k others
> autonomous-system having good filters in place ?


The originating ISPs are in a far better position to check that traffic
isn't from spoofed address ranges than transit networks are.  The best
thing to do is to ask EVERY network to do what they can, not just the few
biggest ones.

Any size ISP can be hit by and hurt by DDoS attacks, so every size ISP
should be doing what they can to make sure they are not either the source
or the victim of those attacks.

Dan


More information about the NANOG mailing list