nanog mailing list archives
Re: BGP offloading (fixing legacy router BGP scalability issues)
From: Stefan Neufeind <nanog () stefan-neufeind de>
Date: Thu, 02 Apr 2015 12:34:25 +0200
On 04/02/2015 09:57 AM, Mark Tinka wrote:
On 2/Apr/15 09:52, Stefan Neufeind wrote:Of course it's not something you should generalise about all people or all traffic from certain countries. But it's obvious that there are some countries which seem to care almost not at all about abuse or maybe even are sources for planned hack-attempts. And at least some large ISPs there seem to do nothing for their reputation or the reputation of their country.So when your customer calls you to complain about not being able to reach a random destination in "certain countries", you would tell them that you made a conscious decision to block access to "certain countries" because of reasons the customer probably will never understand or appreciate?
Not fully block / null-route of course. You might however consider to not allow ssh-logins from certain countries (if you know what you're doing) to avoid noise in the logs, might monitor incoming emails with smtp-auth for suspicious activity based on country (of course there can always be someone on holiday in those countries) etc. All I'm saying is that attacks or spam sometimes seem to originate mainly from "certain" countries. Judge for yourself what you maybe want to use that additional piece of information (geo-location) for - and use it wisely. Kind regards, Stefan
Current thread:
- Re: BGP offloading (fixing legacy router BGP scalability issues), (continued)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mark Tinka (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Colin Johnston (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Paul S. (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Stefan Neufeind (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mark Tinka (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Colin Johnston (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mark Tinka (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Baldur Norddahl (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Paul S. (Apr 02)
- Message not available
- Re: BGP offloading (fixing legacy router BGP scalability issues) Pawel Rybczyk (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Colin Johnston (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mark Tinka (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Stefan Neufeind (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mark Tinka (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Colin Johnston (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mark Tinka (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) goemon (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Colin Johnston (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Barry Shein (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Colin Johnston (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Barry Shein (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) Mike Hammett (Apr 02)
- Re: BGP offloading (fixing legacy router BGP scalability issues) goemon (Apr 02)