[AusNOG] DDoS attack sizes

Luca Salvatore luca at digitalocean.com
Tue Feb 9 01:48:34 EST 2016


There are plenty of tools that can do RTBH based on flow data. WANGuard is
a decent one for reasonable pricing.
As long as your transit provider supports blackhole BGP communities then
you can set something up pretty quickly and at least have the ability to
blackhole something thats being attacked.

On Mon, Feb 8, 2016 at 12:42 AM, Nick Evendor <nickevendor at outlook.com>
wrote:

> Yesterday we experienced an 850 megabit DDoS attack towards a hosting
> customer which almost filled our gigabit uplink and made our upstream
> provider call me on a Sunday due to abnormal traffic on our port.
>
> Thank god it was Sunday so our network was underutilized with no
> collateral damage and everything remained working, but I asked the upstream
> provider what we can do about it other than null routing the destination
> and they said purchase more capacity.
>
> In the past we have seen a few attacks but they have only been a few
> hundred megabits and never come close to saturating our gigabit uplink.
>
> What size attacks are people seeing and is it time to over purchase
> bandwidth and move to a ten gigabit service.
>
> Nick
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>


-- 
Luca Salvatore
Manager, Network Team | DigitalOcean
Phone: +1 (929) 214-7242
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20160208/5cd24bc3/attachment.html>


More information about the AusNOG mailing list