On 3/02/14 4:45 pm, "Cb B" <cb.li...@gmail.com> wrote:
>On Feb 2, 2014 7:41 PM, "Larry Sheldon" <larryshel...@cox.net> wrote: >> >> On 2/2/2014 9:17 PM, ryang...@gmail.com wrote: >>> >>> I'd hate to think that NetOps would be so heavy handed in blocking >>> all of UDP, as this would essentially halt quite a bit of audio/video >>> traffic. That being said, there's still quite the need for protocol >>> improvement when making use of UDP, but blocking UDP as a whole is >>> definitely not a resolution, and simply creating a wall that not only >>> keeps the abusive traffic out, but keeps legitimate traffic from >>> flowing freely as it should. >> >> >> "We had to burn down the village to save it." >> >> > >Close. More like a hurricane is landing in NYC so we are forcing an >evacuation. > >But. Your network, your call. > >CB We block all outbound UDP for our ~200,000 Users for this very reason (with the exception of some whitelisted NTP and DNS servers). So far we have had 0 complaints, and 0 UDP floods sourced from us -- Geraint Jones Director of Systems & Infrastructure Koding AS62805 (We are hiring) https://koding.com gera...@koding.com Phone (415) 653-0083 > >> -- >> Requiescas in pace o email Two identifying characteristics >> of System Administrators: >> Ex turpi causa non oritur actio Infallibility, and the ability to >> learn from their mistakes. >> (Adapted from Stephen Pinker) >>
