[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Colocation providers and ACL requests

Subject: Colocation providers and ACL requests
From: kloch at kl.net (Kevin Loch)
Date: Tue, 01 Nov 2011 14:22:31 -0400
In-reply-to: <[email protected]>
References: <[email protected]>

Christopher Pilkington wrote:
> Is it common in the industry for a colocation provider, when requested to put an egress ACL facing us such as:
> 
>   deny udp any a.b.c.d/24 eq 80
> 
> ?to refuse and tell us we must subscribe to their managed DDOS product?

We have always accommodated temporary ACL's for active DDOS attacks.  I
think that is fairly standard across the ISP/hosting industry.

I do feel it is bad practice to regularly implement customer specific
ACL's on routers.  If a customer wants a managed firewall we have a
full range of those services available.

- Kevin

Follow-Ups:
- Colocation providers and ACL requests
  - From: jbates at brightok.net (Jack Bates)
- Colocation providers and ACL requests
  - From: mysidia at gmail.com (Jimmy Hess)

Prev by Date: Verizon ISP mailing list / ATM ports
Next by Date: using IPv6 address block across multiple locations
Previous by thread: Verizon ISP mailing list / ATM ports
Next by thread: Colocation providers and ACL requests
Index(es):
- Date
- Thread