CC'd to NANOG, maybe we can move this there. On Fri, 11 Feb 2000, Paul Ferguson wrote: > It would allow the attacks to be traced back to the zombies (in > the case of these DDoS attacks), and the perpetrators to be traced > back and identified. To make that easier, what is needed is something associated with a downstream interface that is a part of the configuration itself, not a separate access-list. This makes it much easier to track on a large box with many hundreds of customer links and so forth. Something like so: interface XXXm/n/p.q description whatever customer encaps ... ip address x y ip allow-source blocks-that-are-valid ip allow-source ...more-blocks- so on and so forth. /vijay
- Re: Internet SYN Flooding, spoofing attack... Valdis . Kletnieks
- Re: Internet SYN Flooding, spoofing at... Daniel Senie
- Re: Internet SYN Flooding, spoofing attack... Donald E. Eastlake 3rd
- Re: Internet SYN Flooding, spoofing at... Robert Elz
- Re: Internet SYN Flooding, spoofin... Charles E. Perkins
- Re: Internet SYN Flooding, sp... Paul Ferguson
- Re: Internet SYN Flooding, sp... Daniel Senie
- Re: Internet SYN Flooding, spoofing attacks Perry E. Metzger
- Re: Internet SYN Flooding, spoofing attacks John Stracke
- Re: Internet SYN Flooding, spoofing attacks Paul Ferguson
- Re: Internet SYN Flooding, spoofing attack... Vijay Gill
- Re: Internet SYN Flooding, spoofing at... Paul Ferguson
- Re: Internet SYN Flooding, spoofin... Vijay Gill
- Re: Internet SYN Flooding, sp... Paul Ferguson
- Re: Internet SYN Flooding... Mark Prior
- Re: Internet SYN Flooding, spoofin... Valdis . Kletnieks
- Re: Internet SYN Flooding, sp... Paul Ferguson
- Re: Internet SYN Flooding, spoofin... Mark Prior
- Re: Internet SYN Flooding, spoofing attacks Michael H. Warfield
- Re: Internet SYN Flooding, spoofing attacks Steven M. Bellovin
- Re: Internet SYN Flooding, spoofing attacks Anders Feder