NSPs filter?

• Previous message (by thread): BBC-2 Story on Sept.11
• Next message (by thread): NSPs filter?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I'll clarify this...I already noted that antispoof filtering is an exception, 
and I'll agree that RPF fits loosely under the antispoofing definition as well, 
albiet in the other direction.

-C

On Sun, Aug 04, 2002 at 11:19:35PM -0400, Chris Woodfield wrote:
> IMO, Commercial ISPs should never filter customer packets unless 
> specifically requested to do so by the customer, or in response to a 
> security/abuse incident. 
> 
> Consumer ISPs are much more likely to have clauses in the AUPs that are 
> enforced premptively via packet filtering - antispoof filters (honestly, 
> antispoof filtering is, IMHO, the one expection to my "commercial ISPs 
> should not filter" rule), port blocks to prevent customers running 
> servers, outbound SMTP blocks to off-provider systems to stop direct-to-MX 
> spamming, ICMP rate limiting, et al. All of which are fine by me as long 
> as they clearly assert their right to do so in their AUP - that is, as 
> long as there's a comparable provider I can use instead.
> 
> -C
> 
> On Sun, Aug 04, 2002 at 02:37:12PM +0000, bmanning at karoshi.com wrote:
> > 
> > > Good day,
> > > 
> > > What NSPs do filter packets, and can really deal with DoS and DDoS attacks?
> > > 
> > > -Abdullah Bin Hamad A.K.A Arabian
> > 
> > 	The shorter shorter list would be the NSPs that do NOT filter
> > 	packets.  I can't think of an NSP that does not filter.
> > 
> > --bill


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20020805/c34ec737/attachment.sig>

• Previous message (by thread): BBC-2 Story on Sept.11
• Next message (by thread): NSPs filter?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]