[187780] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Thank you, Comcast.

daemon@ATHENA.MIT.EDU (Roland Dobbins)
Fri Feb 26 08:53:48 2016

X-Original-To: nanog@nanog.org
From: "Roland Dobbins" <rdobbins@arbor.net>
To: "NANOG list" <nanog@nanog.org>
Date: Fri, 26 Feb 2016 20:53:41 +0700
In-Reply-To: <56D0506A.3030902@foobar.org>
Errors-To: nanog-bounces@nanog.org

On 26 Feb 2016, at 20:17, Nick Hilliard wrote:

>  If you block packets with udp src port=53 towards
> customers, you will also block legitimate return traffic if the
> customers run their own DNS servers or use opendns / google dns / etc.

Actually, what they're talking about is blocking packets *destined* for 
UDP/53 on broadband access networks, not *sourced from*.

-----------------------------------
Roland Dobbins <rdobbins@arbor.net>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[187780] in North American Network Operators' Group

Re: Thank you, Comcast.

daemon@ATHENA.MIT.EDU (Roland Dobbins)Fri Feb 26 08:53:48 2016

daemon@ATHENA.MIT.EDU (Roland Dobbins)
Fri Feb 26 08:53:48 2016