Colocation providers and ACL requests

Brandon Galbraith brandon.galbraith at
Tue Oct 25 18:50:37 UTC 2011

On Tue, Oct 25, 2011 at 1:46 PM, Keegan Holley <keegan.holley at>wrote:

> Depends on the provider.  Many just do not want to manage hundreds of
> customer ACL's on access routers.  Especially when it would compete with a
> managed service (firewall, IDP, DDOS) of some sort.  Some still are under
> the impression that ACL's are software based and their giant $100k+ edge
> box
> would crash if they configured them for any reason.
Conversely, some don't want to be paid for bare colocation (at bare
colocation prices) and have to then support 1000+ rules (yes, 1000+) with
10-20 change requests per day. YMMV/slippery slope/service scope/etc.

More information about the NANOG mailing list