From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <dave.taht@gmail.com>
Received: from mail-yb1-xb2f.google.com (mail-yb1-xb2f.google.com
 [IPv6:2607:f8b0:4864:20::b2f])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by lists.bufferbloat.net (Postfix) with ESMTPS id 6E1263B29D
 for <libreqos@lists.bufferbloat.net>; Wed,  2 Nov 2022 13:54:32 -0400 (EDT)
Received: by mail-yb1-xb2f.google.com with SMTP id y72so22052389yby.13
 for <libreqos@lists.bufferbloat.net>; Wed, 02 Nov 2022 10:54:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112;
 h=content-transfer-encoding:to:subject:message-id:date:from
 :mime-version:from:to:cc:subject:date:message-id:reply-to;
 bh=dnaB12BdAkNTxMi/ymt9wd2Dk11mrCeiWlU5/f5Jucw=;
 b=UdL07T87ZtJZJqtNt659hq+2uMZqiwurwmqTx5lpssQYwYmUtpglG1wrpe2qKEPFcc
 02fBkr3De5mGX4fUzZ42jnPxzRit6kPx+sd/B/keats8vkRleCHMfI7HaGS9ej03fp1X
 omNVG90kNzV14ZG/YcD8WZ/A7jY7WKsiSnRGEoAtoGqtZjlxAt9w5PioHClQHievZzLw
 JWLcdu19FjiTQIX0LxWD64UYTKnDPFcGDcvbpKKVMUmfpUzXgyRzy3OfYFDxQ3dWJhmU
 zqoum4f+EE8lrZisnuXGnzDrYiQSGV7zi9chvqDZqH5hyq5WKsogl5swufc9nfg4DNmv
 nyLg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20210112;
 h=content-transfer-encoding:to:subject:message-id:date:from
 :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
 :reply-to;
 bh=dnaB12BdAkNTxMi/ymt9wd2Dk11mrCeiWlU5/f5Jucw=;
 b=MHH9hpvHkAZEqLMFiPDHp6s74ffovZ0vZRQOOuwfW5dKBSy7sPQwpvl2H9umbnPpWB
 vk9uDw4moRuidD1FadVwGC9ooPV4FPBNNUb13++vHspGwR5yUeDFw1GnULV1BKCzWHOL
 p45Og3+uSfLgpLLkCo9o2pnoVQkBcgZ6IMntSp5QKC1wsERL9GnzMi3G0ppV0eiu/S0b
 qH0icp569F+CeAMR/XzZrlywBXFPNXa6xrGyD+tCDE4H+COo4ob3Auz1ptxp49jDQecP
 OTEqMpu/dVukO7RQc2ssh7qaVbWtbfqQJl3x9sNSG7liu4lRbT1n+LHU4H+VP4vp4d5y
 kuvg==
X-Gm-Message-State: ACrzQf03yL4J8XQAccWg7X37VSu2qm6v0hPKh+ijC+U848Wjun2t9eFT
 Mot5X4WooPujK+IpRO/7JkcBDRJKboJ4iM/ikJ4ze0G+iFQ=
X-Google-Smtp-Source: AMsMyM41JDL3KH0KxrdYL0a4xPQZo0bbpDr9MTRIPFbOeyqqkBiAX6R6igGpciRA192WrOSD/NfgOFweO4O+n6xdHAs=
X-Received: by 2002:a25:7a01:0:b0:6b0:820:dd44 with SMTP id
 v1-20020a257a01000000b006b00820dd44mr22931836ybc.387.1667411670958; Wed, 02
 Nov 2022 10:54:30 -0700 (PDT)
MIME-Version: 1.0
From: Dave Taht <dave.taht@gmail.com>
Date: Wed, 2 Nov 2022 10:54:16 -0700
Message-ID: <CAA93jw6onKenyTQiDwtSWJCcjW4WzcBbX25pZMSGU3oj=XqN7Q@mail.gmail.com>
To: libreqos <libreqos@lists.bufferbloat.net>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Subject: [LibreQoS] pulsed wave ddos attacks
X-BeenThere: libreqos@lists.bufferbloat.net
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Many ISPs need the kinds of quality shaping cake can do
 <libreqos.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/libreqos>,
 <mailto:libreqos-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/libreqos>
List-Post: <mailto:libreqos@lists.bufferbloat.net>
List-Help: <mailto:libreqos-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/libreqos>,
 <mailto:libreqos-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Wed, 02 Nov 2022 17:54:32 -0000

Unless done "well", for some sad value of "well", FQ technologies are
very resistant to these sort of attacks, but AQM and FIFOs are not.
fq_codel is actually more resistant in some ways than cake is, because
the direct map hash has collisions.... a well formed against FQ attack
has not been demonstrated, as yet, so far as I know.

https://blog.apnic.net/2022/10/26/acc-turbo-mitigates-pulse-wave-ddos-attac=
ks-using-programmable-switches/

Detection before it hits the customer is hard.

--=20
This song goes out to all the folk that thought Stadia would work:
https://www.linkedin.com/posts/dtaht_the-mushroom-song-activity-69813666656=
07352320-FXtz
Dave T=C3=A4ht CEO, TekLibre, LLC