[BBLISA] business class ISP recommendations
Rich Braun
richb at pioneer.ci.net
Thu May 15 14:22:29 EDT 2014
Steve suggested:
> I used to host a lot of stuff at home, but honestly, even with a T1 and a
> cable modem, it wasn't worth it. The important stuff I put someplace
> reliable, so that I don't have to worry about the last mile nearly as much.
In my own experience, I moved from a Comcast residential DOCSIS-2 connection
in Cambridge (2000-2012) to an Astound Broadband DOCSIS-3 connection in San
Francisco (since 2012). Astound's network was built by RCN, and sold off a
few years ago.
Honestly, at this point the epitome of price/performance is a race between
DOCSIS-3 and FIOS. But I think a whole lot more construction is taking place
with DOCSIS-3 than FIOS, probably because there are several companies using it
whereas only one company supports FIOS. DOCSIS-3 has the advantage of lower
cost: it's exceedingly expensive to run fiber to every end-point, whereas
running RG-6 from a pole-mounted fiber box to several nearby buildings is
quite inexpensive.
At $50/mo for a 55-megabit down/5 megabit-up connection that simply NEVER goes
down, I don't see the point in "business"-class service. I don't get to
control the PTR record but it really doesn't matter. If I want a stable
end-point, I'm going to use an encrypted VPN anyway. I'm not ever going to
use a service that attempts to authenticate my origin based on a DNS entry,
and filtering by origin-IP is at best a secondary line of defense.
As for stability of "dynamic" IP addresses: I've had the same IP for two
years and counting with Astound, and with Comcast I recall one stretch of
about 7 years without any change.
My personal domains are hosted from home, on a pair of servers configured for
load-balanced HA the same as anything I do for a workplace. (One of the
earlier suggestions was to run a pair of connections for improved outage
resilience, but unless you go full-on BGP I don't think you'll achieve it for
inbound services so you might as well put inbound services at a proper hosting
provider.) My personal domains don't require more than 3-nines availability,
which my current setup provides.
Astound's consumer-grade service is a tad nicer than Comcast's in one area:
Comcast does port blocking (including the all-important port 80), and as near
as I can tell, Astound doesn't block anything. I briefly had RCN before 2000,
they didn't port-block at that time but I don't know what their policy is now.
I'm actually surprised the consumer-grade services provide a stable public IP
address to each customer, in this era of NAT, at a time when 99.9% of
customers wouldn't even notice the lack of inbound reachability. I think even
the cell-phone providers give you a public IP whenever you're connected.
Either I've been lucky with my consumer-grade services, or I'm just less picky
because I know that when I pay less, I have no expectation of being able to
reach a clueful support staff person. Service quality has been robust, so
that made all the difference at my home addresses.
-rich
More information about the bblisa
mailing list