Is it common practice to place your own equipment at the ISP? My thought is that if we are able to have our own routers at the ISP, we’d be in a better position to mitigate the effects of a DDOS. As long as the stream of traffic does not adversely affect our routers from performing properly at the ISP, we can then mitigate the effects through access-lists, QOS, etc. That is if the attack is not too distributed, where the source IPs with the highest amount of syn traffic for example can be easily identified.
NPI IT Wan Team, CCNP