[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DDOS, IDS, RTBH, and Rate limiting

Subject: DDOS, IDS, RTBH, and Rate limiting
From: rdobbins at arbor.net (Roland Dobbins)
Date: Sun, 09 Nov 2014 09:28:10 +0700
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

On 9 Nov 2014, at 8:59, Frank Bulk wrote:

> I've written it before: if there was a software feature in routers 
> where I
> could specify the maximum rate any prefix size (up to /32) could 
> receive,
> that would be very helpful.

QoS generally isn't a suitable mechanism for DDoS mitigation, as the 
programmatically-generated attack traffic ends up 'crowding out' 
legitimate traffic.

S/RTBH, flowspec, and other methods tend to produce better results.

-----------------------------------
Roland Dobbins <rdobbins at arbor.net>

Follow-Ups:
- DDOS, IDS, RTBH, and Rate limiting
  - From: frnkblk at iname.com (Frank Bulk)
- DDOS, IDS, RTBH, and Rate limiting
  - From: joelja at bogus.com (joel jaeggli)

References:
- DDOS, IDS, RTBH, and Rate limiting
  - From: eric at ericheather.com (Eric C. Miller)
- DDOS, IDS, RTBH, and Rate limiting
  - From: frnkblk at iname.com (Frank Bulk)

Prev by Date: DDOS, IDS, RTBH, and Rate limiting
Next by Date: Reporting DDOS reflection attacks
Previous by thread: DDOS, IDS, RTBH, and Rate limiting
Next by thread: DDOS, IDS, RTBH, and Rate limiting
Index(es):
- Date
- Thread