[162752] in North American Network Operators' Group
Re: Tier1 blackholing policy?
daemon@ATHENA.MIT.EDU (Thomas Schmid)
Wed May 1 05:40:50 2013
Date: Wed, 01 May 2013 11:40:33 +0200
From: Thomas Schmid <schmid@dfn.de>
To: joel jaeggli <joelja@bogus.com>
In-Reply-To: <517FEA88.5030605@bogus.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Dies ist eine kryptografisch unterzeichnete Nachricht im MIME-Format.
--------------ms070202020605040705070803
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: quoted-printable
Joel,
Am 30.04.2013 18:00, schrieb joel jaeggli:
> On 4/30/13 8:23 AM, Thomas Schmid wrote:
>> On 30.04.2013 17:07, Chris Boyd wrote:
>>> On Tue, 2013-04-30 at 10:59 -0400, ML wrote:
>>>> 1) Do nothing - They're supposed deliver any and all bits
>>>> (Disregarding
>>>> a DoS or similiar situation which impedes said network)
>>>> 2) Prefix filter - Don't be a party (at least in one direction) to t=
he
>>>> bad actors traffic.
>>>
>>> 3 - Deliver all packets unless I've signed up for an enhanced securit=
y
>>> offering?
>>>
>>
>> right - I see this really as something that should be decided at the=20
>> edge
>> of the internet (Tier2+) and not in the core.
> You seem to have odd ideas about what it means to be a settlement free =
> provider. Most of their customers are not smaller internet service=20
> providers.
I know what it means to be a customer of=20
$LargeGlobalISPthatsellsTransittootherISPs since
1995 and I have *never* seen one of these guys blackholing
single IPs on their own (and I'm not talking about RTB, botnet=20
controllers that threaten to kill
the internet etc.). Now since a few weeks we get regular complaints=20
about this. So something has changed.
The sensitive approach would really be to make this an opt-in service=20
for their customers
and not a default service without opt-out option. In times of CGN and=20
hundrets or thousands of
websites behind one IP, blocking addresses is not the right answer to=20
the phishing problem.
Thomas
--------------ms070202020605040705070803
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Kryptografische Unterschrift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=
--------------ms070202020605040705070803--
