NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Akamai bypasses WebSense, Real.com, DoubleClick and oth er UNWANTED TRAFFIC



Hi all,

I came across this behaviour when the Americas Cup was on, another vendor
was doing a similar thing. Complaining to that vendor resulted in them
either changing what they did or putting us in a "do not disturb" pool. End
result was no more ICMP.

A thought, if you ignore the ICMP stuff (say by nailing it at your boundary
router), what are potential hacks that you could be missing or subject to,
because you ignore it?

Even more annoying than thesis probers is those sites that do this and do
not have a reverse lookup. I think that is darn impolite.

-----Original Message-----
From: Cedric Amand [mailto:[email protected]]
Sent: Tuesday, 19 September 2000 9:05 AM
To: Fw-1-Mailinglist-us (E-mail)
Subject: Re: [FW1] Akamai bypasses WebSense, Real.com, DoubleClick and
other UNWANTED TRAFFIC



Hello Carl,

CEM> They do this by ping flooding large blocks of addresses and building a
network latency topology map and vectoring data from their servers.
CEM> I don't want AKAMAI's thousands of servers PING FLOODING me.

Please, if you don't like "unwanted" ICMP then you don't want to be
on the internet at all since ICMP is made for normal operations of
the TCP control protocol and is entirely connection-less.

Akamai, like many others and a shitload of hardware devices, uses
ICMP to determine the "distance" between all of their servers
and you to deliver your customers/users/whatevers the best
internet experience. (As you said.)
They don't have thousands of boxes tough and their technology is
much more complex than just flat probing of the entire internet.

Anyway, it's annoying because it pollutes logs, but as a firewall
admin you maybe should just silently dump their traffic. They won't
change their business. Their traffic load is abyssal.

There are also numerous academic hosts doing the same thing, some
with funny reverse DNS lookups like "network-topology-probing-for
-my-thesis.thatuniv.blah.edu" that are as (if not more) annoying.




============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====
***************************************************
This e-mail is  not an  official  statement of  the
Waikato  Regional  Council unless otherwise stated.
Visit our website http://www.ew.govt.nz
***************************************************


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents � 2003 Network Presence, LLC. All rights reserved.