Hi folks,
What say all of you to the following idea:
Block at the entry/peer router level all packets from networks which
are shown to be "Smurf friendly" - that is, those network numbers
and/or blocks which are smurf amplifiers (have directed broadcasts
enabled)?
I was thinking of something similar to the RBL, but that doesn't quite do
it; a pull-down route to a sink doesn't do you any good, since what you're
after is the *source* address.
Now I know this may be entirely impractical for some folks, if for no other
reason than CPU resources in those gateways.
But this kind of thing would certainly send a message to those open
amplifier networks in a big hurry.
Think of it as an "attractive nuisance" problem (and fix).