[scurvy]

Judging by the downvotes I got, there are people on HN that must think you should expose your router's control plane to the Internet. That or they expect transit providers to not protect their network.

There's no intelligent discussion left here. It's devolved into a sympathy vote. "You said something mean about Linode. I love Linode. Downvotes for you."

If Linode had posted the update to NANOG, it would have been more productive. I don't often say that.

[alexforster]

You may want to go pinging around some of your own tier 1 crossconnects. I bet you'll be surprised.

[scurvy]

They all respond because I asked them for it. About half didn't upon turn up. It's super trivial for them to null route them or readdress in rfc 1918/4193 space.

Or are you referring to xconnects inside their network? That's up to them to work out and I've never seen a provider just abandon their network while under attack.

[alexforster]

You may want to reconsider. CoPP only goes so far, as we've learned the hard way.

[scurvy]

I don't run Cisco, but thanks for worrying about that. Also, stateless ACL's should protect against overrunning the control plane.