beautiful piece of info TheWiseGuy
, but let me understand that. Packets being sent to the gateway inbound for that IP are packets sent from multiple sources including sources from within the ISP network and from different sources, if it's going to drop all traffic intended to enter the inbound gateway interface, this will drop all traffic from all sources including the ISP network. I imagine that traffic as the following:
- traffic from within the network:
A1 - traffic from outside the network coming from different sources including the DDoS traffic:
A2A1 and A2 are going to enter the inbound interface in order to be routed to an outbound interface after matching QoS/ACLs/etc and then to the company's gateway router. In specific, that traffic entering the inbound interface of the ISP's gateway is going to be A1+A2 and dropping traffic that traffic will make all packets from all sources to be completely discarded.
If none of what I mentioned is correct, what do you mean by "continuing to route traffic to that IP internally". do you mean traffic known to be generated from within the ISP's network?
Really interesting to know and I hope I am not making it complicated.