[187824] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Thank you, Comcast.

daemon@ATHENA.MIT.EDU (Chris Adams)
Fri Feb 26 12:56:13 2016

X-Original-To: nanog@nanog.org
Date: Fri, 26 Feb 2016 11:42:15 -0600
From: Chris Adams <cma@cmadams.net>
To: nanog@nanog.org
Mail-Followup-To: nanog@nanog.org
In-Reply-To: <56D08871.7080001@2mbit.com>
Errors-To: nanog-bounces@nanog.org

Once upon a time, Brielle Bruns <bruns@2mbit.com> said:
> UDP is a fun protocol - stateless, so blocking a DST of 53/UDP to
> the customer also will block responses to recursive queries that
> originate from SRC 53/UDP.  Connection tracking sorta makes it
> stateful to a point, but it can get ugly with enough traffic.

Sending queries from port 53 has been considered bad behavior and
deprecated for what, 15 years now?

-- 
Chris Adams <cma@cmadams.net>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[187824] in North American Network Operators' Group

Re: Thank you, Comcast.

daemon@ATHENA.MIT.EDU (Chris Adams)Fri Feb 26 12:56:13 2016

daemon@ATHENA.MIT.EDU (Chris Adams)
Fri Feb 26 12:56:13 2016