On Feb 9, 2010, at 6:57 PM, 최종훈 wrote:
Is there anyone who have experiences controlling udp port 8,8080,0 ? rate-limiting or block!
Not a good idea to use rate-limiting to deal with DDoS attacks - the programmatically-generated bad traffic ends up crowding out legitimate traffic. All kinds of online games (many very popular in the RoK) make use of various UDP high ports; one never knows what applications users are running, so simply blocking ports isn't generally a good idea. S/RTBH and/or an IDMS are a couple of different ways to mitigate DDoS attacks. See this presentation for some BCPs: <http://files.me.com/roland.dobbins/k54qkv> ----------------------------------------------------------------------- Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com> Injustice is relatively easy to bear; what stings is justice. -- H.L. Mencken