On 12-sep-2006, at 16:31, Jun Bi wrote:
DDoS attacks is a cross-layer problems, so the DDoS prevention is
out of SAVA's scope.
So what's the use then? Non-DoS related source address spoofing is
easily thwarted by doing a return routability check that contains a
hard-to-guess nonce.
The
On 12-sep-2006, at 11:25, Pekka Savola wrote:
Ingress filtering is definitely to be recommended, and uRPF
filtering certainly does have its uses, but, at least in the
current state of the Internet, they are insufficient as a
protection for the routing infrastructure.
If this refers to ens
