[AusNOG] Stopping unwanted random NTP traffic
Dobbins, Roland
rdobbins at arbor.net
Wed Apr 16 10:15:46 EST 2014
On Apr 16, 2014, at 7:13 AM, Andrew Tschudi <andrewtschudi at gmail.com> wrote:
> We were the target of the attacks and have no open NTP servers on our network.
Gotcha.
In that case, you can use QoS to police down non-76-byte UDP/123 traffic to 1mb/sec in aggregate or thereabouts, and ask your upstream transit(s) to do the same on their side of the link(s).
-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
More information about the AusNOG
mailing list