BeesTea
Network Janitor
Premium,VIP
join:2003-03-08
00000
| reply to smcallah
Re: New Juniper code, too
Border capacity isn't the only factor when considering router back-plane needs. We use Junipers inside our borders as part of our BGP-based policy system. They have no outside connection to them at all.
Cheers,
-BeesT
--
echo 16i[q]sa[ln0=aln100%Pln100/snlbx]sbA0D4D465452snlb xq |dc |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to smcallah
said by smcallah  : You won't really find too many non-Tier 1 ISP's that use Junipers. The webhosting operation where I'm on staff has two of them, and the router guy (a JCNIE) is making an onsite visit today to perform this upgrade.
Steve
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
smcallah
join:2004-08-05
Home
| reply to Steve
said by Steve : said by bleearg13 : There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. Not if you have a Juniper that hasn't been patched... You won't really find too many non-Tier 1 ISP's that use Junipers. Juniper doesn't really make any "small" routers. Their smallest router is still a 2.5/5 Gig backplane. No one needs all that for their T1's, or even T3's... not even their OC3, unless they've got a need for 16 OC3's in one box. And that doesn't sound like a "small" ISP. |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to bleearg13
said by bleearg13 : There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. Not if you have a Juniper that hasn't been patched...
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
bleearg13
join:2001-03-03
Gaithersburg, MD
| reply to Steve
My point was that the large network providers have already upgraded, so at the very least, a large part of the core of the internet is protected against this vulnerability already.
Like most everything else in the media (ie. flu shot shortage, shark attacks, killer bees, etc.), these announcements are often blown out of proportion. There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. |
|
BeesTea
Network Janitor
Premium,VIP
join:2003-03-08
00000 | reply to Steve
Absolutely. When tier 1's start going down en-mass. That's news.
-BeesT
--
echo 16i[q]sa[ln0=aln100%Pln100/snlbx]sbA0D4D465452snlb xq |dc |
|
dpocoroba
Premium
join:2000-11-14
224.0.0.5 |  reply to Steve
Agrred, any kind of news that would cause major loss of service. Or cuase interuptions to ISP's and there SLA's is worth spreading the word.
--
"Knowledge is contagious, infect" |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to bleearg13
said by bleearg13 :Juniper pre-released new code to large ISPs and most of them, including us, have already upgraded to prevent this problem. "Large ISPs" may be at the center of the universe, but they are not the entire universe: Other people have to upgrade too.Every time these vulnerabilities are announced, the media jumps on it and creates mass pandemonium. This was a big enough deal that large ISPs performed emergency upgrades - why would it not be "news" ?
Steve
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
bleearg13
join:2001-03-03
Gaithersburg, MD | Juniper pre-released new code to large ISPs and most of them, including us, have already upgraded to prevent this problem.
Every time these vulnerabilities are announced, the media jumps on it and creates mass pandemonium. |
|
