Discuss mailing list

[Guillaume Parent <gparent AT gparent.org>]

The tier 2 security page shows how to trivially defeat these attacks through netfilter. It is available on the wiki.

The target is the source IP address, not isc.org.

On Mon, Apr 29, 2013 at 5:17 PM, Alex M (Coyo) <coyo AT darkdna.net> wrote:

On 04/29/2013 03:53 PM, mike wrote:

So any ideas on how to fix it?

The RRL patch is helping in my case, but the traffic is still having a
significant impact on my network. I may be forced to pull the plug on
OpenNIC if it goes much longer.

Would the dampening patch buy me anything? I'm thinking probably not.

Unfortunately, I have little experience with server administration, and have never had the pleasure of attempting to mitigate or thwart an attack on server and network infrastructure I was responsible for, and whose attack I'd be blamed for.

I'd say the dampening patch and throttling may help, but you may need to pull the plug on those resolvers in the short term to thwart the attack upon isc.org.

--------
You are a member of the OpenNIC Discuss list. You may unsubscribe by emailing discuss-unsubscribe@lists.opennicproject.org