[171420] in North American Network Operators' Group
Re: Question for service providers regarding tenant use of public
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Tue Apr 29 00:00:25 2014
X-Original-To: nanog@nanog.org
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: "nanog@nanog.org" <nanog@nanog.org>
Date: Tue, 29 Apr 2014 03:35:43 +0000
In-Reply-To: <1A5C3257AD8D4946A4B497A6FAF501743C4F511F32@EXCH07-01.apollogrp.edu>
Errors-To: nanog-bounces@nanog.org
On Apr 28, 2014, at 3:18 PM, Cliff Bowles <Cliff.Bowles@apollo.edu> wrote:
> Or do ISPs put some level of security between their tenants and the inter=
net to prevent this? I've been told that the majority do not have any intel=
ligent filtering beyond bogon-lists.
Flow telemetry export/collection/analysis for detection/classification/trac=
eback (there are several open-source tools), S/RTBH or flowspec to squelch =
outbound badness. Plus all the usual BCPs:
<https://app.box.com/s/4h2l6f4m8is6jnwk28cg>
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
