> On the other hand, we've had DDoS prevention mechanisms (based on > multiple rate-limiters, for different kinds of packets) deployed for > over 6 months now. They seem to work just fine, are always active, > and require no state in the network.
you know how to rate-limit without state in the network? please explain.