North American Network Operators Group
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Provider-based DDoS Protection Services

  • From: Suresh Ramasubramanian
  • Date: Fri Jul 29 01:13:31 2005
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=bcTYsKpFzv6AoJrncw2nXRSa3W/zeZo15V0ZQQEmdF5bZ5/wD2tl7sPKqrBRwfdQ3LDGR1C4ONO6MmQh1M/wHDvJlPHJ3ScYePwfp64VEQ4E0JdQZBI6c/eYbwTcjeiaUojlWB0Xr4hSse+XKkeYEGS/gyPlErYGtNEHobQ7oYM=
On 29/07/05, Joe Shen <[email protected]> wrote:
> 
> I'm very interested in technical solutions of ISP
> based (D)DOS solutions. Where can I find
> document/information on it?
> 

A very quick google search for "ISP ddos mitigation nanog" gets me this link - 
http://www.honeypots.net/incidents/ddos-mitigation

Has links to some interesting presentations, including - starting from
the basics

Barry Greene's templates for Egress and Ingress filtering on Cisco (oh
and RFC3704),
Several presentations on filtering bogons, 
Chris Morrow on blackhole route servers [VERY useful, that]
Plus presentations on ddos mitigation boxes (Riverhead, Arbor etc) .

Oh yes - dig through the nanog / apricot etc archives for past
presentations on darknets and the team cymru darknet project
 
-- 
Suresh Ramasubramanian ([email protected])