On Tuesday, February 18, 2014 04:29:31 AM Aaron wrote: > My gosh! NTP ddos attacks are coming like crazy lately. > Y'all getting hit ? > > I'm going to need to setup a bgp injection thingy with my > upstream providers to signal a /32 for my victim(s) in > my network so I can selective blackhole traffic in the > cloud prior to it hitting my internet links..... this is > getting really bad
It's been an issue since early last month. Be sure to have ACL's for your NTP sessions from your routers/switches/AP's/e.t.c., as well as patched NTP/filtered servers to eliminate attack surfaces. Mark.
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ cisco-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
