nanog mailing list archives
Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ]
From: Alex Bligh <amb () gxn net>
Date: Thu, 10 Feb 2000 21:03:54 +0000
Alexei Roudnev (alex () genesyslab com) said:
[deploy WFQ and RPF universally] Then , if someone want to kill yahoo (for example), he need a few thousands different data streams to do it - which is impossible.
Several thousand different data streams is exactly what DDoS is. Also there is a presumed high correlation with people who do not secure their servers adequately againts intrusion (and thus turning these things into DDoS clients) and people who do not run RPF right next to those servers. Therefore this is only 'impossible' if there are not more than 2000 servers sitting on clueless or fallible peoples network. Recent experiences with internet scaling suggest even if this were true now (which it isn't), it won't last long. -- Alex Bligh VP Core Network, Concentric Network Corporation (formerly GX Networks, Xara Networks)
Current thread:
- Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] Alex Bligh (Feb 10)
- <Possible follow-ups>
- Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] Alex Bligh (Feb 10)
- Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] Randy Bush (Feb 10)
- Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] NANOG Mailing List (Feb 10)
- Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] Randy Bush (Feb 10)
- Re: Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] michael . dillon (Feb 11)