Colocation providers and ACL requests

Keegan Holley keegan.holley at sungard.com
Tue Oct 25 13:46:38 CDT 2011


Depends on the provider.  Many just do not want to manage hundreds of
customer ACL's on access routers.  Especially when it would compete with a
managed service (firewall, IDP, DDOS) of some sort.  Some still are under
the impression that ACL's are software based and their giant $100k+ edge box
would crash if they configured them for any reason.

2011/10/25 Christopher Pilkington <cjp at 0x1.net>

> Is it common in the industry for a colocation provider, when requested to
> put an egress ACL facing us such as:
>
>  deny udp any a.b.c.d/24 eq 80
>
> …to refuse and tell us we must subscribe to their managed DDOS product?
>
> -cjp
>
>
>
>


More information about the NANOG mailing list