Colocation providers and ACL requests
keegan.holley at sungard.com
Tue Oct 25 13:46:38 CDT 2011
Depends on the provider. Many just do not want to manage hundreds of
customer ACL's on access routers. Especially when it would compete with a
managed service (firewall, IDP, DDOS) of some sort. Some still are under
the impression that ACL's are software based and their giant $100k+ edge box
would crash if they configured them for any reason.
2011/10/25 Christopher Pilkington <cjp at 0x1.net>
> Is it common in the industry for a colocation provider, when requested to
> put an egress ACL facing us such as:
> deny udp any a.b.c.d/24 eq 80
> …to refuse and tell us we must subscribe to their managed DDOS product?
More information about the NANOG