Hacker News new | ask | show | jobs
by alexforster 3826 days ago
You may want to go pinging around some of your own tier 1 crossconnects. I bet you'll be surprised.
1 comments
scurvy 3826 days ago
They all respond because I asked them for it. About half didn't upon turn up. It's super trivial for them to null route them or readdress in rfc 1918/4193 space.

Or are you referring to xconnects inside their network? That's up to them to work out and I've never seen a provider just abandon their network while under attack.

link
alexforster 3826 days ago
You may want to reconsider. CoPP only goes so far, as we've learned the hard way.
link
scurvy 3826 days ago
I don't run Cisco, but thanks for worrying about that. Also, stateless ACL's should protect against overrunning the control plane.
link