IX port security
Arnold Nipper
arnold at nipper.de
Sun Feb 24 20:08:02 UTC 2008
On 24.02.2008 16:58 Andy Davidson wrote
>
> On 23 Feb 2008, at 11:19, Greg VILLAIN wrote:
>
>> Thinking back about this thread we've had lately around IXes, I have
>> some extra questions.
>> It is I assume the IX's responsibility to protect members from
>> harming each other through the peering LAN.
>
> That depends what you mean by protect. Any IX participant must
> remember that they're sharing an infrastructure with (by and large)
> competitors, and that there are particular miscreant activities that
> you as an IX participant must guard against, which your IX operators
> can't completely protect you from (I'm thinking pointing default, or
> attacks on port-facing router interfaces.)
>
both is imho not inherent to an IXP environment but may also happen on
private peerings.
Best regards,
Arnold
--
Arnold Nipper, AN45
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 187 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20080224/d67a72cc/attachment.sig>
More information about the NANOG
mailing list