Download now Free registration required
This paper discusses a method for preventing Distributed Denial of Service (DDoS) attacks that use spoofed source IP addresses by monitoring TCP traffic. The method requires dropping TCP packets from client to server and monitoring the effect of the dropped packet. The goal is to develop software that an organization can deploy on most reprogrammable routers. The paper tests the software on a popular UNIX distribution - FreeBSD - on a real network.
- Format: PDF
- Size: 106.6 KB