Hi Guys,

I got this crazy idea.

On a core network switch setup a port mirror for the main port where upstream is connected

connect a mikrotik port to the mirrored switch port

setup IBGP sessing between Mikrotik and core BGP routers

If DDOS detected x number of packets per sec to a single IP on the connected mirrored port, use ibgp to auto null route the victim IP

Anyone done this before?

that's nice for DDOS.

plz give the details if you already finished.



----------
Sanjoy Banik
MTCNA, MTCRE