[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: netconf and working "on the box"
- To: xmlconf <xmlconf@ops.ietf.org>
- Subject: Re: netconf and working "on the box"
- From: George Jones <gmjones@mitre.org>
- Date: Wed, 12 Mar 2003 17:30:46 -0500
- References: <3E6FA826.1060902@mitre.org> <E18tE0P-000Ef9-00@roam.psg.com>
- User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20021003
Randy Bush wrote:
I'm trying to understand how netconf/xmlconf proposals would
change/work with the way things are currently done. For example,
today, if an ISP has a customer sending DoS traffic, it is common
to get on the router (i.e. log in/enable/whatever) and type commands
to locate and fix the problem. In some situations (network links
saturated by flood traffic) one HAS to do this on the box, via
a CLI, because you can not reach the box via the network.
this discussion belongs on the public list.
why is there a difference coming to the box in-band or out-of-band?
what are the differences?
Because it's concievable, especially during a DoS attack, that you
can't get to the box in-band and it is precicely under those
circumstances that you need to be able to poke around and
change configurations.
---George Jones
--
to unsubscribe send a message to xmlconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/xmlconf/>