25 Oct
2011
25 Oct
'11
2:50 p.m.
On Tue, Oct 25, 2011 at 1:46 PM, Keegan Holley <keegan.holley@sungard.com>wrote:
Depends on the provider. Many just do not want to manage hundreds of customer ACL's on access routers. Especially when it would compete with a managed service (firewall, IDP, DDOS) of some sort. Some still are under the impression that ACL's are software based and their giant $100k+ edge box would crash if they configured them for any reason.
Conversely, some don't want to be paid for bare colocation (at bare colocation prices) and have to then support 1000+ rules (yes, 1000+) with 10-20 change requests per day. YMMV/slippery slope/service scope/etc.