[162754] in North American Network Operators' Group
Re: Tier1 blackholing policy?
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Wed May 1 06:09:36 2013
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: NANOG list <nanog@nanog.org>
Date: Wed, 1 May 2013 10:09:21 +0000
In-Reply-To: <5180E311.4040209@dfn.de>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On May 1, 2013, at 4:40 PM, Thomas Schmid wrote:
> Now since a few weeks we get regular complaints about this. So something =
has changed.
Yes, things have changed. There are reasons that some of the transit ISPs =
are performing this blocking. They aren't doing it for kicks.
For example, there are non-insignificant numbers of servers/accounts which =
have been compromised and used to launch large-scale, high-impact DDoS atta=
cks. The negative impact of allowing these servers to emit attack traffic =
far outweighs the inconvenience experienced by a few end-customers trying t=
o access these servers (which are compromised, anyways, and therefore it is=
n't a good idea to try and access them in the first place).
Suggest you ask the transit ISPs in question directly. You aren't likely t=
o get an authoritative answer on a public email list.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
