Ingress filtering

In computer networking, ingress filtering is a technique used to ensure that incoming packets are actually from the networks from which they claim to originate. This can be used as a countermeasure against various spoofing attacks where the attacker's packets contain fake IP addresses. Spoofing is often used in denial-of-service attacks, and mitigating these is a primary application of ingress filtering.^[1]

^ Zhauniarovich, Yury; Dodia, Priyanka (June 2019). "Sorting the Garbage: Filtering Out DRDoS Amplification Traffic in ISP Networks". 2019 IEEE Conference on Network Softwarization (NetSoft). IEEE. pp. 142–150. doi:10.1109/netsoft.2019.8806653. ISBN 978-1-5386-9376-6. S2CID 201621791.

[1] Zhauniarovich, Yury; Dodia, Priyanka (June 2019). "Sorting the Garbage: Filtering Out DRDoS Amplification Traffic in ISP Networks". 2019 IEEE Conference on Network Softwarization (NetSoft). IEEE. pp. 142–150. doi:10.1109/netsoft.2019.8806653. ISBN 978-1-5386-9376-6. S2CID 201621791.

[1]

Ingress filtering

From Wikipedia, the free encyclopedia · View on Wikipedia