[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Large DDoS, small extortion

Subject: Large DDoS, small extortion
From: rdobbins at arbor.net (Roland Dobbins)
Date: Thu, 22 May 2014 21:57:39 +0700
In-reply-to: <CAN-S6ZqtwxcjGudh8Q+bW5u=7WEvz5Jn4Tdk-MmQ1u-9QHXhig@mail.gmail.com>
References: <CAN-S6ZqtwxcjGudh8Q+bW5u=7WEvz5Jn4Tdk-MmQ1u-9QHXhig@mail.gmail.com>

On May 22, 2014, at 11:51 AM, Beleaguered Admin <dealing.with.ddos at gmail.com> wrote:

> While we are interested in technical means to mitigate the attacks (the syn and syn/acks are brutal, all cores pegged on multicore 10G nic servers just dealing with interrupts),

Here's how to get started:

<http://mailman.nanog.org/pipermail/nanog/2010-January/016747.html>

Ensure you have flow telemetry enabled at all your edges; there are open-source tools like nfsen/nfdump that you can get started with quickly.

----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

                   Equo ne credite, Teucri.

    		   	  -- LaocoÃ¶n

References:
- Large DDoS, small extortion
  - From: dealing.with.ddos at gmail.com (Beleaguered Admin)

Prev by Date: IPv6 at 50% for VZW (Re: NAT IP and Google)
Next by Date: Large DDoS, small extortion
Previous by thread: Large DDoS, small extortion
Next by thread: Large DDoS, small extortion
Index(es):
- Date
- Thread