Opened 7 years ago

#228 new defect

Probabilistic support of legacy clients

Reported by: ynir.ietf@… Owned by: draft-ietf-ipsecme-ddos-protection@…
Priority: normal Milestone:
Component: ddos-protection Severity: -
Keywords: Cc:


We should allow clients that don't support puzzles to return a cookie only, and then allow them to create a half-open SA with a certain probability that depends on the load level. This way legacy clients are not entirely blocked during an attack.

Change History (0)

Note: See TracTickets for help on using tickets.