Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing
作者: D. Senie , P. Ferguson
DOI:
关键词:
摘要: Recent occurrences of various Denial Service (DoS) attacks which have employed forged source addresses proven to be a troublesome issue for Internet Providers and the community overall. This paper discusses simple, effective, straightforward method using ingress traffic filtering prohibit DoS use IP propagated from 'behind' an Provider's (ISP) aggregation point.
ietf.org
fc2.com
acm.org 参考文章(4)
G. Montenegro, Reverse Tunneling for Mobile IP RFC 3024. ,vol. 2344, pp. 1- 19 ,(1998)
Y. Rekhter, Address Allocation for Private Internets RFC. ,vol. 1597, pp. 1- 8 ,(1994)
F. Baker, Requirements for IP Version 4 Routers RFC. ,vol. 1812, pp. 1- 175 ,(1995)
C. Perkins, IP Mobility Support RFC 2002. ,vol. 2002, pp. 1- 79 ,(1996)