On Aug 02, 2013, at 09:37 , sgr...@airstreamcomm.net wrote: > I’m curious to know what other service providers are doing to > alleviate/prevent ddos attacks from happening in your network. Are you > completely reactive and block as many addresses as possible or null0 traffic > to the effected host until it stops or do you block certain ports to prevent > them. What’s the best way people are dealing with them?
#1: Ensure your network is BCP38 compliant. Hard to complain about others attacking you when you are not clear. And if you do not block source-address spoofing, you are not clean. As for the rest, I'll let others with more recent experience explain what they do. -- TTFN, patrick
signature.asc
Description: Message signed with OpenPGP using GPGMail
