Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Tiger Effect and Internet DDoS

Posted by timothy on Wednesday June 18, 2008 @07:32AM from the aka-the-kenn-starr-steamroller dept.

An anonymous reader writes "Many US and Canadian ISPs thought they were under a massive denial of service attack yesterday — traffic spiked by hundreds of gigabits across North America. Turns out that the traffic was due to live streaming of the U.S. Open and Tiger Woods nail-biting victory."

1 of 191 comments (clear)

Min score:

Reason:

Sort:

Re:Wow! Could Thse ISPs be in Trouble!? by ACMENEWSLLC · 2008-06-18 09:45 · Score: 5, Informative

These streams are 800Kb/s each. On top of that, they run over SSL which adds to the overhead. And each connection streams from one of hundreds of IP ranges.

We have 500 users sharing a dual T1, all wanting to watch this. So why did business transactions begin failing? I wonder.

Yea, we saw this.

Since it was SSL we can't inspect it at the application layer for QoS. Since it's a huge number of IP ranges, that gets us too. We can't transparently proxy SSL so Squid can't help. It's a flash stream over https.

So we QoSed the end users on port 443 in this case. 300b/s seems about right. :P