trixtah.livejournal.comJust for a change, here's a post on utter stupidity that is not committed by the lusers.
In our network, we have two sides: let's call them "core" and "corporate". The Core side is not top-secret, but it does contain some critical systems which absolutely cannot be polluted from elsewhere, including the Corporate network. The networks are physically separated, except for a firewalled-up-to-the-wazoo DMZ that allows a few systems to pass data to the Corporate side.
On the Corporate side, we have a number of systems that crunch Core data, including one application that was having strange intermittent problems with corrupted data arriving from the Core side. The lead app developer came to me to have a chat about how to prove that the data that was traversing a particular router was causing the problem. The router apparently has a fault that means it can't process 100MB/full traffic, and the dev wanted to know of a tool that could show what was going on with the packets. Once that problem was identified, he'd lobby to have the router fixed so it could cope with the full load.
So, I started off discussing TCPDump, and how by comparing the packets on the Core side, and those received on the Corporate side, they could see how many packets are being dropped. The dev said that the missing data was really causing gyp with his app... and the word missing (as opposed to slow) hit my ear. So, I asked, are they using UDP to transmit this critical data that is supposed to be processed by the applications on the Corporate side that are part of our entire business management system (ie. scheduling the work that the Core side actually does), so accuracy is paramount? Oh, yes, says the dev, the Core admins only permit UDP traffic outbound, because TCP might cause "pollution problems".
Well, I think their concern about flood attacks coming from the Corporate network's potential malicious use of SYNs and ACKs is very ...diligent. Obviously the complexity of setting up stateful firewall inspection is a bit beyond them - and hell, if they're not processing the data, who cares about consistency or completeness? Anyway, I advised the dev to have a discussion with the application owner (one step down from the CEO) about the merits of "error correction" and "guaranteed delivery", and let him fight it out with the Core Gollums protecting their data Preciouses.