Security control in DSL access network
william.caban at netxar.com
Mon Mar 27 13:21:28 UTC 2006
I could add that many of the implementations are done using
"professional services" of whoever the manufacturer of the DSLAM is and
it is a very simple and weak configuration. They make sure it works and
thats it. No attention is given to security or performance in any form.
Now, I should also mention that the reason for this is that the
providers usually only pay for this basic configuration and think or
assume they can do the rest. The problem is that a DSLAM configuration
can become so huge once the service start rolling that it is hard for
any one to go back a fix the configurations because of the impact it may
have to the clients. It is not impossible to fix, it will just have an
impact to all the clients arriving to the same DSLAM and this can be
counted in tens of thousands of clients. So the solution is to do it
right from the beginning.
Sean Donelan wrote:
> On Sun, 26 Mar 2006, Joe Shen wrote:
>> Is there any books or papers on carrier level DSL
>> access network and LAN access network? Specifically,
>> it should analysis the futures of DSL network and
>> security problems in DSL networks.
> You probably want to start with the DSL Forum <http://www.dslforum.org/>
> After you get through their technical reports you should be very confused.
> A problem you will discover is often the DSL folks don't think they
> have any security problems. That all the security issues are with IP
> and the ISP.
Senior Network & System Consultant
Mobil: 787 378-7602
More information about the NANOG