Re: Guarding against DoS

To: Micah Anderson <micah@riseup.net>
Cc: debian-isp@lists.debian.org
Subject: Re: Guarding against DoS
From: "Chris G." <grahn@xmission.com>
Date: Fri, 2 Jul 2004 14:23:26 -0600 (MDT)
Message-id: <[🔎] Pine.LNX.4.60.0407021422190.8846@xmission.xmission.com>
In-reply-to: <[🔎] 20040702201458.GC1095@riseup.net>
References: <[🔎] 20040702201458.GC1095@riseup.net>

In our setup, our clients call us because we are their upstream. We blockit at our routers, then call our providers asking them to block it attheir upstream. There is no way a client can refuse traffic (at least inmost setups I've seen) without it passing through their port. The onlyoption would be to allow colocate clients to have access to your routersfor putting blocks in.


Chris G.

On Fri, 2 Jul 2004, Micah Anderson wrote:


Lets suppose we get targeted for a DOS attack. We can pretty much assume
this will eventually happen. If a colo'ed box gets hit with 20 mbps of
incoming traffic, even if it ignores it all, then we might have to pay
$2200 that month. That is not good!

How can we keep ourselves from getting high bandwidth bills in a colo
environment? If we block the traffic at a router in our rack, we've
already received it and it has been counted. Is the only solution to
catch it quickly and get the ISP to block it upstream?

thanks,
micah


--
To UNSUBSCRIBE, email to debian-isp-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Guarding against DoS
  - From: Micah Anderson <micah@riseup.net>

Prev by Date: Guarding against DoS
Next by Date: Re: nat ipchains on debian woody
Previous by thread: Guarding against DoS
Next by thread: Suggestions for system with infortrend fibre storage.
Index(es):
- Date
- Thread