RTBH and change the CGNAT config. Josh Luthman 24/7 Help Desk: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373
On Wed, Jan 20, 2021 at 8:47 PM Matt Hoppes < [email protected]> wrote: > That's what I've done... stops it in about 1 minute, but at the expense > of traffic flowing. > > On 1/20/21 8:36 PM, Zach Underwood wrote: > > In that case you really only have one option announce a black hole to > > your upstreams and complete the ddos attack. > > > > On Wed, Jan 20, 2021, 8:20 PM Matt Hoppes > > <[email protected] > > <mailto:[email protected]>> wrote: > > > > In this case they overwhelmed our circuit... and it was destined to > the > > CGNAT box NAT IP. > > > > On 1/20/21 7:39 PM, Zach Underwood wrote: > > > If you have enough to bring the good and attack traffic into your > > > network the arbor boxes can filter out all of the attack traffic > > allow > > > the ip and it's traffic to stay online. > > > > > > On Wed, Jan 20, 2021, 7:28 PM Chuck McCown via AF > > <[email protected] <mailto:[email protected]> > > > <mailto:[email protected] <mailto:[email protected]>>> wrote: > > > > > > What does that do? > > > > > > Sent from my iPhone > > > > > >> On Jan 20, 2021, at 5:04 PM, Zach Underwood > > <[email protected] <mailto:[email protected]> > > >> <mailto:[email protected] <mailto:[email protected]>>> > > wrote: > > >> > > >> > > >> If you have bandwidth send all of the traffic into an arbor > > box. I > > >> have seen them do some amazing things. > > >> > > >> > > >> > > >> Disclaimer I use to for work for arbor/netscout but I am no > > longer > > >> there. > > >> > > >> On Wed, Jan 20, 2021, 6:56 PM Matt Hoppes > > >> <[email protected] > > <mailto:[email protected]> > > >> <mailto:[email protected] > > <mailto:[email protected]>>> wrote: > > >> > > >> Any ideas how to mitigate DDOS attacks when you’re on > CGNAT > > >> with maybe 100 people behind one IP concentrator? > > >> -- > > >> AF mailing list > > >> [email protected] <mailto:[email protected]> <mailto:[email protected] > > <mailto:[email protected]>> > > >> http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > >> > > >> -- > > >> AF mailing list > > >> [email protected] <mailto:[email protected]> <mailto:[email protected] > > <mailto:[email protected]>> > > >> http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > > -- > > > AF mailing list > > > [email protected] <mailto:[email protected]> <mailto:[email protected] > > <mailto:[email protected]>> > > > http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > > > > > > > > > -- > AF mailing list > [email protected] > http://af.afmug.com/mailman/listinfo/af_af.afmug.com >
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
