North American Network Operators Group
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Historical
Re: Is it time to block all Microsoft protocols in the core?
- From: Rubens Kuhl Jr.
- Date: Mon Jan 27 08:43:56 2003
| c) We buy Cisco 5200's in mass volume because they support our rural
| networks better than any other modem bank we've tried (welcome to Oklahoma
| :) and the processor on this wonderful piece of hardware will not support
| the overhead of using a per user access-list methodology to filter the
| majority and whitelist those who need the service.
Use different IP pools, one for regular users, one for whitelisted. Uplink
hop filters netbios, ms-sql, common trojan ports before they get to
customers based on destination IP being from regular pool.
Rubens
|
