Cable Forum - View Single Post - Recent DNS issues

Chrysalis · 10-06-2006, 18:28

if some small isp with 100mbit of peering I could understand but ntl have many gigabits of peering so they probably cant be taken down with a bandwidth saturation attack so I can only assume they either let the traffic reach the dns servers unfiltered. Or it was a simple request overload on the servers (resource consumption).

A isp of ntl's size should be able to mitigate a ddos attack, their are a few ways to do it but the first step would be buying some high end juniper hardware configuring it to filter attacks before they even reach the dns servers and then add more dns servers so their is some better redundancy.

Of course if they not willing to spend money, what they can do is much more limited.

10-06-2006, 18:28	#17
Chrysalis Inactive Join Date: Sep 2003 Posts: 12,047	Re: Recent DNS issues - NTL speaks.... if some small isp with 100mbit of peering I could understand but ntl have many gigabits of peering so they probably cant be taken down with a bandwidth saturation attack so I can only assume they either let the traffic reach the dns servers unfiltered. Or it was a simple request overload on the servers (resource consumption). A isp of ntl's size should be able to mitigate a ddos attack, their are a few ways to do it but the first step would be buying some high end juniper hardware configuring it to filter attacks before they even reach the dns servers and then add more dns servers so their is some better redundancy. Of course if they not willing to spend money, what they can do is much more limited.