8 Feb
2006
8 Feb
'06
8:39 a.m.
Hello. For the last couple of days we have intermittently been experiencing a (>1gbps) denial of service attack. I want to apologize to anyone whose DNS servers have been (ab)used in the attack, and let you know what is occurring. The attacker is forging our source address on dns requests, and the DNS reply is routing to us. I promise, we're not attacking your dns servers. Please take a moment to consider implementing RPF checks to prevent these type of forged packet attacks. Advice is welcomed both on-list and off. Thanks, Ejay Hire ISDN-Net Network Engineer