[168729] in North American Network Operators' Group
Re: TWC (AS11351) blocking all NTP?
daemon@ATHENA.MIT.EDU (Glen Turner)
Mon Feb 3 19:41:05 2014
From: Glen Turner <gdt@gdt.id.au>
In-Reply-To: <CAL9jLaZpfHm3iap6_sk_=-EKyek+ZbRm5yn_81zF=7KWnJbPTA@mail.gmail.com>
Date: Tue, 4 Feb 2014 11:10:35 +1030
To: Christopher Morrow <morrowc.lists@gmail.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 4 Feb 2014, at 9:28 am, Christopher Morrow <morrowc.lists@gmail.com> =
wrote:
> wait, so the whole of the thread is about stopping participants in the
> attack, and you're suggesting that removing/changing end-system
> switch/routing gear and doing something more complex than:
> deny udp any 123 any
> deny udp any 123 any 123
> permit ip any any
Which just pushes NTP to some other port, making control harder. We=92ve =
already pushed all =91interesting' traffic to port 80 on TCP, which has =
made traffic control very expensive. Let=92s not repeat that history.
--=20
Glen Turner <http://www.gdt.id.au/~gdt/>=
