BCP38/84 and DDoS ACLs

Matthew Luckie mjl at caida.org
Sat May 27 20:31:21 UTC 2017


> This doesn't seem quite like it is BCP38 and more like this is
> BCP84, but it only talks about use of ACLs in section 2.1 without
> providing any examples. Given that it is also 13 years old I thought
> there might be fresher information out there.

section 2.1 is about permitting packets from specific address ranges.
If you want to assess the dynamism or size of ACL required for a given
AS, place the AS into this URL:

https://spoofer.caida.org/prefixes.php?asn=1909

Matthew
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20170528/79df92a7/attachment.pgp>


More information about the NANOG mailing list