Subject: Rare project developers
List archive
- From: Frédéric LOUI <>
- To:
- Subject: Re: [rare-dev] new use-case: ddos cleaner
- Date: Wed, 19 Jan 2022 14:20:26 +0100
- Dkim-filter: OpenDKIM Filter v2.10.3 zmtaauth03.partage.renater.fr 6BA6880B7B
Hi mc36,
Thanks for this scrubbing traffic profile.
> for example cisco's implementation can handle no more than 4k rules
Assuming we can count on a sturdy 64k entry does this means that we have
solution that accept 16x more Flowspec rules ?
Any candidates to willing to test this use case ?
We an offer help of course :)
fl
> Le 19 janv. 2022 à 13:42, mc36 <> a écrit :
>
> hi,
> attaching you the updated profiles, the addition is a ddos cleaner,
> suggested by frederic...
> it could be places inline, connecting the wedge's odd-even ports, and could
> be instructed via flowspec...
> the goal here is to overcome the limitations in the existing vendor line
> cards...
> for example cisco's implementation can handle no more than 4k rules
> https://xrdocs.io/ncs5500/tutorials/bgp-flowspec-on-ncs5500/
> and all the rules are programmed to all the line cards regardless of it's
> function...
> on the other hand, we can compile a specific profile for this, with only
> flowspec enabled,
> and allocate all the tcam resources to this single table...
> regards,
> cs<IMG_20220119_131740.jpg><profiles.xlsx>
- [rare-dev] new use-case: ddos cleaner, mc36, 01/19/2022
- Re: [rare-dev] new use-case: ddos cleaner, Frédéric LOUI, 01/19/2022
- Re: [rare-dev] new use-case: ddos cleaner, mc36, 01/19/2022
- Re: [rare-dev] new use-case: ddos cleaner, Frédéric LOUI, 01/19/2022
Archive powered by MHonArc 2.6.19.