Kevin Brown wrote: > > First let me say this: never let your ISP tell you there is *nothing* they > can do. It's a cop-out for one of two reasons: either they are completely > unwilling to help because they are afraid that by accepting even a margin of > responsibility it will open them up to higher expectations, OR they are > completely incompetent. If this is their official stance then threaten to > take your business elsewhere. And if they don't respond, then find another > ISP. But I digress.
Well, there is another possibility... that being that, if they keep adding ACLs for lots and lots of customers, it is possible to reach a point where the memory or CPU on the router is overloaded with all of those rules. Of course, that isn't really a legitimate concern for a one-time emergency situation. *But*... if you're the target of a DoSer, and the ISP takes action to block them, and they shift their attack, and the ISP blocks that, and they come back again... well, the ISP is going to get tired of constantly reacting *and* being a target themselves. In that situation, you have to look at why you're attracting this sort of attention and find another way to deal with it, because there is no way to completely stop a dedicated attacker. -- John Oliver System Administrator hosting.com, an Allegiance Telecom company mailto:[EMAIL PROTECTED] (858) 637-3600 http://www.hosting.com/
