nanog mailing list archives

Re: automatic rtbh trigger using flow data

From: Hugo Slabbert <hugo () slabnet com>
Date: Fri, 31 Aug 2018 11:43:04 -0700

On Fri 2018-Aug-31 13:35:29 -0500, Aaron Gould <aaron1 () gvtc com> wrote:

* btw, what can you experts tell me about tcp-based volumetric attacks...
please help me to understand... does tcp have an inherent inability to
ramp-up to massive speeds/loads with it's sliding window and
must-rcv-ack-before sending more segments ??  I ask since I heard this years
ago about tcp and I wonder if this is why

UDP, depending on the application, can be reflected and amplified.Generally on the TCP side you can try SYN or ACK floods, but you're notgoing to get an amplified reflection.


--
Hugo Slabbert       | email, xmpp/jabber: hugo () slabnet com
pgp key: B178313E   | also on Signal

Attachment: signature.asc
Description: Digital signature

Current thread:

RE: automatic rtbh trigger using flow data, (continued)
- - - RE: automatic rtbh trigger using flow data Michel Py (Aug 30)
    - Re: automatic rtbh trigger using flow data H I Baysal (Aug 31)
    - RE: automatic rtbh trigger using flow data Ryan Hamel (Aug 31)
    - Re: automatic rtbh trigger using flow data H I Baysal (Aug 31)
    - Re: automatic rtbh trigger using flow data Roland Dobbins (Aug 31)
    - RE: automatic rtbh trigger using flow data Michel Py (Aug 31)
    - RE: automatic rtbh trigger using flow data Lotia, Pratik M (Aug 31)
    - Re: automatic rtbh trigger using flow data Roland Dobbins (Aug 31)
    - RE: automatic rtbh trigger using flow data Lotia, Pratik M (Aug 31)
    - RE: automatic rtbh trigger using flow data Aaron Gould (Aug 31)
    - Re: automatic rtbh trigger using flow data Hugo Slabbert (Aug 31)