[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IPv4 Exhaustion...

Subject: IPv4 Exhaustion...
From: owen at delong.com (Owen DeLong)
Date: Sat, 24 Jul 2010 01:48:13 -0700
In-reply-to: <[email protected]>
References: <1101219972-1279906580-cardhu_decombobulator_blackberry.rim.net-1881903051-@bda903.bisx.prod.on.blackberry> <[email protected]> <[email protected]>

On Jul 23, 2010, at 1:40 PM, Ricky Beam wrote:

> On Fri, 23 Jul 2010 13:59:41 -0400, Steven Bellovin <smb at cs.columbia.edu> wrote:
>> Do the complaints you receive include port numbers?
> 
> I've never seen one that did.  I've not even seen one with an exact timestamp.
> 
> You would require the src and dst ip *and* port, plus the near exact timestamp of when the connection was opened and closed.  Even then, that's one needle in a huge pile of identical needles.  The netflow/sflow/etc. data needed to support such a lookup for a modern ISP network would be absolutely insane. (a decade ago for a small, regional ISP/telco, just prefix records were over 700MB per day -- back in the days of 2mb DSL, before bittorrent...)
> 
> --Ricky

Rough translation: LSN + CALEA = Very Interesting Times for ISPs that deploy LSN and are subject to CALEA.

Owen

Follow-Ups:
- IPv4 Exhaustion...
  - From: morrowc.lists at gmail.com (Christopher Morrow)
- IPv4 Exhaustion...
  - From: jfbeam at gmail.com (Ricky Beam)

References:
- IPv4 Exhaustion...
  - From: khatfield at socllc.net (khatfield at socllc.net)
- IPv4 Exhaustion...
  - From: smb at cs.columbia.edu (Steven Bellovin)
- IPv4 Exhaustion...
  - From: jfbeam at gmail.com (Ricky Beam)

Prev by Date: Addressing plan exercise for our IPv6 course
Next by Date: Addressing plan exercise for our IPv6 course
Previous by thread: IPv4 Exhaustion...
Next by thread: IPv4 Exhaustion...
Index(es):
- Date
- Thread