stevos:
Lurker here in the community from Network Time Foundation. Love to know what part of Cisco this is so I can go chase them down. I work for NTF, and these are opportunities to find funding for the Pool and for NTF.
IMHO, these huge orgs need to be reminded of the rules, and especially that they should be supporting the NTP Pool (and NTF) to keep the service available and scaling to the needs of users (IoT- OMG!)
It’s Jasper Technologies – it was a company acquired by Cisco in 2016. Their website now uses “Cisco Jasper” branding. (I only use their old name because they haven’t updated their IP addresses’ whois information since 2015 .)
Jasper Technologies and 204.156.180.0/22?
I don’t think they’ve hardcoded anyone’s IPs – I think they’re doing normal DNS lookups and slamming the entire Pool that hard.
My hope(?) is that they actually have like a billion devices behind a small NAT block.
Is there a vendor zone list somewhere where we can lookup companies?
I recently (yesterday) re-enabled logging and sure enough Jasper Technologies (a division of Cisco) has been continuing to pound away at my ntp server.
I tried using ‘jasper’ and ‘cisco’ for pool names and that didn’t return anything, but who knows what they could have named them (if indeed they have a valid pool).
Company Info: https://www.jasper.com/
Anyhow, in the past 24 hours I’ve received 495,640 requests total from a…
https://www.jasper.com/