North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: IX port security

  • From: Arnold Nipper
  • Date: Sun Feb 24 15:10:07 2008
  • Openpgp: id=0E8FF046

On 24.02.2008 16:58 Andy Davidson wrote

On 23 Feb 2008, at 11:19, Greg VILLAIN wrote:

Thinking back about this thread we've had lately around IXes, I have some extra questions.
It is I assume the IX's responsibility to protect members from harming each other through the peering LAN.

That depends what you mean by protect. Any IX participant must remember that they're sharing an infrastructure with (by and large) competitors, and that there are particular miscreant activities that you as an IX participant must guard against, which your IX operators can't completely protect you from (I'm thinking pointing default, or attacks on port-facing router interfaces.)

both is imho not inherent to an IXP environment but may also happen on private peerings.

Best regards, Arnold -- Arnold Nipper, AN45

Attachment: signature.asc
Description: OpenPGP digital signature