[50561] in North American Network Operators' Group
Re: NSPs filter?
daemon@ATHENA.MIT.EDU (Stephen Stuart)
Mon Aug 5 00:16:37 2002
To: Chris Woodfield <rekoil@semihuman.com>
Cc: nanog@merit.edu
In-reply-to: Your message of "Sun, 04 Aug 2002 23:19:35 EDT."
<20020805031935.GA25577@semihuman.com>
Date: Sun, 04 Aug 2002 21:15:26 -0700
From: Stephen Stuart <stuart@tech.org>
Errors-To: owner-nanog-outgoing@merit.edu
> IMO, Commercial ISPs should never filter customer packets unless
> specifically requested to do so by the customer, or in response to a
> security/abuse incident.
Let's say the customer operates some big enterprise network, runs
their infrastructure in RFC1918 space ("for security," hah), and spews
a couple kilobits of DNS query from that RFC1918 space toward the root
nameservers. Assume that either pride or ignorance will prevent the
customer from ever asking you to filter what you know to be garbage
traffic. Does your rule to "never filter customer packets" mean you're
going to sit and watch those packets go by?
If yes, why?
Stephen
