Turk Telekom have also forced me to block their IP space below. Same situation, very huge spikes once or twice a day, completely overloading a cisco router. Blocking of the following IP space was enough though to cut all those spikes at once, and I haven't noticed any spike comming from any other IP blocks they may have.
81.212.0.0/14 85.96.0.0/12 88.224.0.0/11 For Cisco routers: deny udp 81.212.0.0 0.3.255.255 any eq ntp deny udp 85.96.0.0 0.15.255.255 any eq ntp deny udp 88.224.0.0 0.31.255.255 any eq ntp This may look a little agressive but they let me no better choice, as their use of the pool looked agressive as well, though in my opinion its not their only fault, because of the known issues and disadvantages of the current dns implementation of the pool. As some have said already, if all internet users start using the pool, or if it gets beeing widely used, we will have a very big issue. I believe this issue with Turk Telekom is a good proof that the current pool architecture is not suited for global implementation. My suggestion for a quick and simple solution for this problems related to system overloads, would be to let us choose if we want our servers listed in more than the own country's pool, as an example, I would like to see my server listed only in the pt.pool.ntp.org and not also in europe.pool.ntp.org. Those fearless ones having a high profile network and system infrastructure capable of handling an entire zone like europe or america could list their servers in such wide pools. However at least in the last three days there was no more spikes hitting the front-end router comming from Turk Telekom IP space, so it appears they took action on this matter, either they took aknowledge of the complaints or they have noticed their IP space was getting blocked. Eventually time will tell if they indeed took action and have fixed the issue, and in that case I will cancel the block. Rui _______________________________________________ timekeepers mailing list [email protected] https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
