From owner-freebsd-isp@FreeBSD.ORG Sat Feb 9 23:31:01 2013 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 8E70E7EB; Sat, 9 Feb 2013 23:31:01 +0000 (UTC) (envelope-from jim.howlett@outlook.com) Received: from snt0-omc3-s17.snt0.hotmail.com (snt0-omc3-s17.snt0.hotmail.com [65.55.90.156]) by mx1.freebsd.org (Postfix) with ESMTP id 6D05AD8C; Sat, 9 Feb 2013 23:31:01 +0000 (UTC) Received: from SNT002-W152 ([65.55.90.136]) by snt0-omc3-s17.snt0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Sat, 9 Feb 2013 15:29:55 -0800 X-EIP: [UBAc5h3xwGTaxJiNxvCMtDicEcioJfja] X-Originating-Email: [jim.howlett@outlook.com] Message-ID: From: James Howlett To: "freebsd-security@freebsd.org" , "freebsd-isp@freebsd.org" Subject: FreeBSD DDoS protection Date: Sun, 10 Feb 2013 00:29:55 +0100 Importance: Normal MIME-Version: 1.0 X-OriginalArrivalTime: 09 Feb 2013 23:29:55.0611 (UTC) FILETIME=[5E3216B0:01CE071D] Content-Type: text/plain; charset="iso-8859-2" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 09 Feb 2013 23:31:01 -0000 Hi=2C I have a router running BGP and OSPF (bird) on FreeBSD. Are there any best practises one can take in order to protect the network f= rom DDoS attacks. I know this isn't easy. But I would like to secure my network as much as po= ssible. Even if I'am not able to prevent or block a ddos I would like to get some i= nfo (snmp trap parhaps) regarding the attack. Then I can contact my ISP or install an ACL on my router. Any help would be great. All best=2C jim =