nanog mailing list archives

Re: Colocation providers and ACL requests

From: Keegan Holley <keegan.holley () sungard com>
Date: Tue, 25 Oct 2011 14:46:38 -0400

Depends on the provider.  Many just do not want to manage hundreds of
customer ACL's on access routers.  Especially when it would compete with a
managed service (firewall, IDP, DDOS) of some sort.  Some still are under
the impression that ACL's are software based and their giant $100k+ edge box
would crash if they configured them for any reason.

2011/10/25 Christopher Pilkington <cjp () 0x1 net>

Is it common in the industry for a colocation provider, when requested to
put an egress ACL facing us such as:

 deny udp any a.b.c.d/24 eq 80

…to refuse and tell us we must subscribe to their managed DDOS product?

-cjp

Current thread:

Colocation providers and ACL requests Christopher Pilkington (Oct 25)
- Re: Colocation providers and ACL requests Keegan Holley (Oct 25)
  - Re: Colocation providers and ACL requests Brandon Galbraith (Oct 25)
    - Re: Colocation providers and ACL requests Christopher Pilkington (Oct 25)
    - Re: Colocation providers and ACL requests PC (Oct 25)
    - Re: Colocation providers and ACL requests Keegan Holley (Oct 25)
- Re: Colocation providers and ACL requests William Herrin (Oct 25)
- Re: Colocation providers and ACL requests Paul Graydon (Oct 25)
  - Re: Colocation providers and ACL requests Keegan Holley (Oct 25)
    - Re: Colocation providers and ACL requests Jay Ashworth (Oct 25)
    - Re: Colocation providers and ACL requests Keegan Holley (Oct 26)
    - Re: Colocation providers and ACL requests Jay Ashworth (Oct 26)

(Thread continues...)