Home page logo
/

nanog logo nanog mailing list archives

Re: SMURF amplifier block list
From: "Jay R. Ashworth" <jra () scfn thpl lib fl us>
Date: Sun, 19 Apr 1998 20:45:19 -0400

On Sat, Apr 18, 1998 at 03:48:57PM -0400, Dean Anderson wrote:

but it doesn't matter:

Again folks:

Two things will cut 99.44% of the smurf:

Get as many net-ops as you can to 1) turn no ip-directed broadcast (if
they have a knob (or bitch long and loud)) and 2) filter outbound
packets with forged source addresses (or bitch long and loud if you
don't have a knob).

It's said that a problem changes in type when it chanegs _enough_ in
magnitude.  I suspect that it won't be another 12 months before a
router with both those knobs is _required_ to meet the (new version of
the) Router Requirements RFC, much less to actually _get_ a
connection.  If you can't filter the appropriate stuff, get the hell
off _my_ Internet.  :-)

Cheers,
-- jr 'wanna see the Bill of Sale?  ;-)' a
-- 
Jay R. Ashworth                                                jra () baylink com
Member of the Technical Staff             Unsolicited Commercial Emailers Sued
The Suncoast Freenet      "Two words: Darth Doogie."  -- Jason Colby,
Tampa Bay, Florida             on alt.fan.heinlein             +1 813 790 7592

Managing Editor, Top Of The Key sports e-zine ------------ http://www.totk.com


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]