Hi Guys,
I got this crazy idea.
On a core network switch setup a port mirror for the main port where upstream is connected
connect a mikrotik port to the mirrored switch port
setup IBGP sessing between Mikrotik and core BGP routers
If DDOS detected x number of packets per sec to a single IP on the connected mirrored port, use ibgp to auto null route the victim IP
Anyone done this before?