Re: [Dots] use of SDN for DDoS mitigation
Christopher Morrow <morrowc.lists@gmail.com> Fri, 04 September 2015 21:14 UTC
Return-Path: <christopher.morrow@gmail.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52CC81AD1EC for <dots@ietfa.amsl.com>; Fri, 4 Sep 2015 14:14:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rfivhHY81PQK for <dots@ietfa.amsl.com>; Fri, 4 Sep 2015 14:14:49 -0700 (PDT)
Received: from mail-yk0-x234.google.com (mail-yk0-x234.google.com [IPv6:2607:f8b0:4002:c07::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 43C571ACEE4 for <dots@ietf.org>; Fri, 4 Sep 2015 14:10:43 -0700 (PDT)
Received: by ykei199 with SMTP id i199so33131443yke.0 for <dots@ietf.org>; Fri, 04 Sep 2015 14:10:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=+Vmr/NXvdkCN0083q7KSuj+8F2vOsPMDF4T0CTyvEqA=; b=go1n+I4DUIEOCxZPKiHCPjVNXbTAV5BSWnRIiRoryo3y9ywczFfbpGp0+WNaCKpYuW uXuvfQDLpBT4g6/ZUiuPhZ2TWmGzDtdbIbnV0g1kgj6DYByArMfcAL0T30LUovjIN8fc u3YAHk6wzCpUrGjQ+xFlKdzfMeLvK/gsfK89+BjgSIg7iGtra7Y63ARbxk0IApBNHIbD gl5rJz+zXyquqCGmVytK+uDuFOdoJWuH89+POTbaJJkAtd4xlT066ZLytxqyEQP85E17 pYKoRV0lgMN4aZQYETwbf+pvN7O8ECX0oC8ln22OiZfIowAwY3wTgazt0EBXtOWnMsF0 obcA==
MIME-Version: 1.0
X-Received: by 10.170.150.133 with SMTP id r127mr6728645ykc.52.1441401042574; Fri, 04 Sep 2015 14:10:42 -0700 (PDT)
Sender: christopher.morrow@gmail.com
Received: by 10.13.237.135 with HTTP; Fri, 4 Sep 2015 14:10:42 -0700 (PDT)
In-Reply-To: <55CB494A.9020706@mti-systems.com>
References: <55CB494A.9020706@mti-systems.com>
Date: Fri, 04 Sep 2015 17:10:42 -0400
X-Google-Sender-Auth: 4IQVavpDlC4VNoxQDgs3922Ah_o
Message-ID: <CAL9jLab8NSGd1sMkH_3LEBmQHAVP-Eo_1Cc9wr_msL70+-V_Xg@mail.gmail.com>
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Wesley Eddy <wes@mti-systems.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dots/JMVR-FYs3CIJn0Gokt2-eN652L8>
Cc: "gclark mti-systems.com" <gclark@mti-systems.com>, "dots@ietf.org" <dots@ietf.org>, Justin Dailey <Justin@mti-systems.com>
Subject: Re: [Dots] use of SDN for DDoS mitigation
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Sep 2015 21:14:54 -0000
On Wed, Aug 12, 2015 at 9:25 AM, Wesley Eddy <wes@mti-systems.com> wrote: > This is not strictly within the scope of the DOTS charter, but > because it's related to DDoS mitigation, we thought it might > be of interest to the DOTS list. > > This draft was posted to the SDNRG, and discusses use of OpenFlow > interdomain, for delegating control of ISP network filtering to > customers: Folk might consider looking at the prior-art in this arena... specifically N-Layer's use of flow-spec from customers, and the fairly well published failure modes of same. 'Let your customer traffic engineer your network!' (no, don't do that) 'Let your customer consume valuable resources on devices in your network to which they have no ideas about limits of' (no, don't do that) > https://datatracker.ietf.org/doc/draft-eddy-sdnrg-customer-filters/ > > We're eager to hear your comments, criticisms, and questions, but I > assume that the DOTS chairs would like this to be offlist (or on the > SDNRG list) since it is not really in-scope for DOTS and might be a > distraction from the chartered work. > > -- > Wes Eddy > MTI Systems > > _______________________________________________ > Dots mailing list > Dots@ietf.org > https://www.ietf.org/mailman/listinfo/dots
- [Dots] use of SDN for DDoS mitigation Wesley Eddy
- Re: [Dots] use of SDN for DDoS mitigation Christopher Morrow
- Re: [Dots] use of SDN for DDoS mitigation Wesley Eddy
- Re: [Dots] use of SDN for DDoS mitigation Roland Dobbins
- Re: [Dots] use of SDN for DDoS mitigation Ida Leung
- Re: [Dots] use of SDN for DDoS mitigation Roland Dobbins
- Re: [Dots] use of SDN for DDoS mitigation Ida Leung
- Re: [Dots] use of SDN for DDoS mitigation Robert Moskowitz