Cool Ideas suffers massive outage due to DDoS

Bradley Prior

MyBroadband Journalist
Staff member
Super Moderator
Joined
Oct 16, 2018
Messages
2,583
Cool Ideas suffers massive outage due to DDoS

Internet service provider Cool Ideas has been hit by a DDoS attack which has affected its ability to provide a stable Internet connection to its customers.

“We are currently experiencing a distributed denial of service attack that is affecting all customers on our network,” said the company in a statement.
 

airborne

Executive Member
Joined
Jul 13, 2007
Messages
9,851
Doesn't Cool Ideas regularly get this issue, who did they pi55 off that badly?
 

Tinuva

The Magician
Joined
Feb 10, 2005
Messages
8,948
This is where their choice of upstream provider will hurt them. I like HE.net for IPv6, but I dislike when ZA ISPs use them as their upstream provider. HE.net is actually a horrible tier1 provider. Even Cogentco is miles better.

Having access to nullroute ips in London before it hits your backhaul to SA using BGP communities helps bucket loads in these situations, especially if automated.
 

furpile

Expert Member
Joined
Jul 14, 2014
Messages
2,824
This is where their choice of upstream provider will hurt them. I like HE.net for IPv6, but I dislike when ZA ISPs use them as their upstream provider. HE.net is actually a horrible tier1 provider. Even Cogentco is miles better.

Having access to nullroute ips in London before it hits your backhaul to SA using BGP communities helps bucket loads in these situations, especially if automated.
From the CI thread it seems they did move over to Cogent now.
 

Happy Days

Senior Member
Joined
Feb 14, 2017
Messages
708
This is where their choice of upstream provider will hurt them. I like HE.net for IPv6, but I dislike when ZA ISPs use them as their upstream provider. HE.net is actually a horrible tier1 provider. Even Cogentco is miles better.

Having access to nullroute ips in London before it hits your backhaul to SA using BGP communities helps bucket loads in these situations, especially if automated.
Sounds like you should be consulting for Cool Ideas :thumbsup:
 

Tinuva

The Magician
Joined
Feb 10, 2005
Messages
8,948
Sounds like you should be consulting for Cool Ideas :thumbsup:
I think there are many people better than me.

That said, seeing the post above yours, they just need to automate the process now that detects the ips receiving abnormal traffic and nullroute them in realtime using bgp route injection.

When we did this at my previous work place, it made life so much better not having to figure out what is going on each time, just look at the dashboard and received email updates on whenever something happens. 1 person may have been affected, but the rest of the network was usually fine.
 

TheRoDent

Cool Ideas Rep
Joined
Aug 6, 2003
Messages
4,028
This is where their choice of upstream provider will hurt them. I like HE.net for IPv6, but I dislike when ZA ISPs use them as their upstream provider. HE.net is actually a horrible tier1 provider. Even Cogentco is miles better.

Having access to nullroute ips in London before it hits your backhaul to SA using BGP communities helps bucket loads in these situations, especially if automated.
We have both Cogent and HE :)
 

j4ck455

Executive Member
Joined
Jan 2, 2006
Messages
5,560
I was wondering why Netflix was buffering on rewind, now I'm grateful that I was able to watch anything at all when I got home this evening.

We have both Cogent and HE :)
Good to know that you're on top of this Mr RoDi :thumbsup:
 

TheRoDent

Cool Ideas Rep
Joined
Aug 6, 2003
Messages
4,028
I was wondering why Netflix was buffering on rewind, now I'm grateful that I was able to watch anything at all when I got home this evening.



Good to know that you're on top of this Mr RoDi :thumbsup:
What were you streaming BTW? We have several red Netflix boxes in our network.
 

GhostSixFour

Mafia Addict
Joined
Nov 9, 2009
Messages
13,080
O. Is this what happened? I received an email from Vumatel saying there has been maintenance done, and marked it down to that. :(
 

Tinuva

The Magician
Joined
Feb 10, 2005
Messages
8,948
We have both Cogent and HE :)
Thats great. Only need to drop HE now and then add a DDoS detection system that is scripted to inject BGP null route rules, which will then drop the traffic on Cogent's edge long before it even reaches your network. The detection system is needed to automate the whole process, then you guys can sleep at night :)
 

TheRoDent

Cool Ideas Rep
Joined
Aug 6, 2003
Messages
4,028
Thats great. Only need to drop HE now and then add a DDoS detection system that is scripted to inject BGP null route rules, which will then drop the traffic on Cogent's edge long before it even reaches your network. The detection system is needed to automate the whole process, then you guys can sleep at night :)
We have this. :)
 

Hunted

Senior Member
Joined
Aug 6, 2003
Messages
777
I must be lucky, but I haven't experienced any issues last night whilst jamming PUBG
 
Top