Blackhole for DDoS mitigation

Andre Nathan andre at digirati.com.br
Mon Dec 30 13:07:14 CET 2013


Hello

Let's say I'm facing a DDoS attack against one of my IP addresses. The
attack is against a single IP, but it's flooding my network and taking
it dow, so I'd like to blackhole it in my Bird router to mitigate the
effects of the attack.

Is this configuration enough to blackhole an address, say a.b.c.d?

protocol static blackhole {
  table master;
  route a.b.c.d/32 blackhole;
  import all;
}

Thank you,
Andre

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 555 bytes
Desc: OpenPGP digital signature
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20131230/f0112223/attachment.asc>


More information about the Bird-users mailing list