| Publisher | University of Wisconsin | ||
|---|---|---|---|
| Format | 338.3KB PDF | Date added | 23 Feb 2005 |
| Topics | Monitoring Systems, Network Design | ||
| Downloads | 3 | ||
Monitoring unused or dark IP addresses offers opportunities to significantly improve and expand knowledge of abuse activity without many of the problems associated with typical network intrusion detection and firewall systems. This paper addresses the problem of designing and deploying a system for monitoring large unused address spaces such as class A telescopes with 16M IP addresses. The paper describes the architecture and implementation of the Internet Sink (iSink) system which measures packet traffic on unused IP addresses in an efficient, extensible and scalable fashion. In contrast to traditional intrusion detection systems or firewalls, iSink includes an active component that generates response packets to incoming traffic. This gives the iSink an important advantage in discriminating between different types of attacks (through examination of the response payloads).
Did you find this white paper useful?
10 out of 18 users found this white paper useful
Related white papers
Systems Integration
Many compaines realise the market has changed, the competition is stronger, pressure is on and costs are increasing causing IT structures to change. Every company has it's own indivdual challenges...
How a Spanning Tree Works
The way a switch learns Ethernet (MAC) addresses is by inspecting the Ethernet frame and recording the source MAC address in a dynamic table. The switch will also associate a...
TANDBERG SNMP
The Codec supports the SNMP (Simple Network Management Protocol) standard for network management and surveillance. SNMP is the de facto standard in network management for IP-based units in a network....
Generate Savings Now: The Advantages of Telecom Expense Management
Why is telecom expense management (TEM) gaining importance today? What return on investment can your company expect from TEM? Interested in learning helpful tips for making the business case for...
Channel Sampling Strategies for Monitoring Wireless Networks
Monitoring the activity on an IEEE 802.11 network is useful for many applications, such as network management, optimizing deployment, or detecting network attacks. Deploying wireless sniffers to monitor every access...
BMC Performance ManagerĀ
BMC Introduces the BMC Performance Manager, the next generation of systems management solutions from BMC and the evolution of PATROL. BMC Performance Manager is an innovative, single, integrated solution that...
Toronto Airport Meets ITIL Standards and Takes Support Levels, Change Management to New Heights With HEAT
The Greater Toronto Airports Authority (GTAA), formed in 1993, is a nonprofit corporation responsible for ensuring that the greater Toronto's regional system of airports meets current and future air service...
