[dns-operations] Continued weekly DDoS fun

Roland Dobbins rdobbins at cisco.com
Mon Jan 12 17:46:18 UTC 2009

On Jan 12, 2009, at 4:33 PM, Tom Daly wrote:

> Our normal countermeasures are holding this back no problem, but the  
> frequency is getting pretty annoying. Is anyone else seeing anything  
> similar? Anyone have any more advanced mitigation techniques then  
> the good old 'find and filter' cat and mouse game?

There are commercial DDoS mitigation products available from various  
vendors which specifically help mitigate DDoS against DNS (full  
disclosure:  my employer, Cisco Systems, is one such vendor).

There are also commercial DDoS mitigation services based upon these  
technologies, known as 'Clean Pipes' services, which provide this type  
of mitigation for a fee.

I'm unsure if either of these options is viable for dyndns.org;  
otherwise, S/RTBH is a common  reaction/mitigation tool utilized by  
SPs to mitigate DDoS in general (usual cautions about being gamed into  
blocking non-attacking nodes/networks whose addresses are being  
spoofed applies).

Roland Dobbins <rdobbins at cisco.com> // +852.9133.2844 mobile

      All behavior is economic in motivation and/or consequence.

More information about the dns-operations mailing list