nanog mailing list archives
Re: it's here
From: William Allen Simpson <wsimpson () greendragon com>
Date: Wed, 13 Feb 2002 14:46:25 -0500
jlewis () lewis org wrote:
Do we then also buy/maintain VPN hardware to connect all the various 1918 management networks to the NOC?
Um, it isn't that hard or expensive. I just put an older box -- like a 133 or 200 MHz machine -- at each pop, running OpenBSD. Allows a simple VPN throughout, and runs ntpd, too. And sometimes running a remote copy of MRTG at a particular POP is nice for hunting down infected local DSL customers without tying up the backbone. Look, it's a lot less costly than the routers, the DSLAMs, even the managed switches. My main difficulty is they aren't rackable (just old desktop machines), so they sit in the bottom of the rack. Someday, someday. It's time we all run with better security. (As we frantically put in more filtering in the middle of the night based on the report -- no matter how proactive we try to be, the bar keeps moving and moving.) -- William Allen Simpson Key fingerprint = 17 40 5E 67 15 6F 31 26 DD 0D B9 9B 6A 15 2C 32
Current thread:
- it's here Alex Rubenstein (Feb 12)
- Re: it's here Sean Donelan (Feb 12)
- Re: it's here Valdis . Kletnieks (Feb 12)
- Re: it's here Eric Brandwine (Feb 12)
- Re: it's here Sean Donelan (Feb 12)
- Re: it's here Jon O . (Feb 12)
- Re: it's here Ron da Silva (Feb 13)
- Re: it's here Eric Brandwine (Feb 13)
- Re: it's here jerry scharf (Feb 13)
- Re: it's here jlewis (Feb 13)
- Re: it's here William Allen Simpson (Feb 13)
- Re: it's here Jared Mauch (Feb 13)
- Re: it's here Sean Donelan (Feb 12)
- Re: it's here Jesper Skriver (Feb 13)
- Re: it's here Eric Brandwine (Feb 13)
- Re: it's here kevin graham (Feb 13)
- Re: it's here Jesper Skriver (Feb 13)
- Re: it's here Jake Khuon (Feb 13)
- Re: it's here Steve Noble (Feb 13)
- RE: it's here Tony Hain (Feb 13)
- Re: it's here Eric Brandwine (Feb 13)
- Re: it's here Christopher L. Morrow (Feb 13)