Show 06 – Chewing on DDOS

5 June 2010 by 2 Comments

We started talking about DDOS as the first topic and the use of external providers for DDOS filtering in the Internet core. Then we looked at the use of IDS systems for scanning traffic to detect DOS attacks, and why it’s not used. Well, some people do, but “in real life” IDS needs specialist expertise that causes more problems than it solves.

Then we looked at application based attacks and using Load Balancers to mitigate them. As well as a number of system / server design choices that might help to solve problems.

And then we realised that we didn’t have any more time.

EtherealMind – how much bandwidth for DDOS is enough

EtherealMind – TCP Syn Cookies as DDOS defence

Proloxic

Cisco DDOS Appliances – Guard and Detectors – White Paper

Subscribe in iTunes

You can subscribe in iTunes by clicking on the logo here.

Media Player and MP3 Download

You can subscribe to the Podcast RSS feed

Podcast: Play in new window | Download (Duration: 52:46 — 24.2MB)

Filed Under: Podcasts, Weekly Shows Tagged With: , ,
About Greg Ferro

Greg Ferro is a Network Engineer/Architect, mostly focussed on Data Centre, Security Infrastructure, and recently Virtualization. He has over 20 years in IT, in wide range of employers working as a freelance consultant including Finance, Service Providers and Online Companies. He is CCIE#6920 and has a few ideas about the world, but not enough to really count.

He is a host on the Packet Pushers Podcast, blogger at EtherealMind.com and on Twitter @etherealmind and Google Plus.

  • http://webscopia.com Webscopia

    The more punishing attacks today come from HTTP GET – which are small in size, but completely overwhelm the server.

    • http://etherealmind.com Greg Ferro

      Yes, that's why I mention WAF and Load Balancers as application level protection.