<<< Chronological Index >>>    <<< Thread Index >>>

FYI: checklist for filtering


Something for our (in- or external ?) FAQ:

Q. What kind of access do TTM boxes need to/from the outside world

A. We require the following:

     TCP
	- outgoing mail (SNMP)  
	- incoming SSH  (from 193.0.0.0/23)

     UDP
	- incoming/outgoing DNS         (local resolver)
        - incoming/outgoing TestTraffic (today port 6000)


Q. Host changed access policy, how to check if things work OK?

A. Check the following:

	- RCDP data files continue to collect data
        - other boxes continue to receive data from this box 
        - operational mails still arrive at tt-ops@ripe.net
        - the local named can resolve DNS queries 
          (try "host tt01 127.0.0.1" and "host tt01 193.0.0.198")

-- Rene


P.S. If I've overlooked something, feel free to add.





<<< Chronological Index >>>    <<< Thread Index >>>