Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Is it time to block all Microsoft protocols in the core?

  • From: Rubens Kuhl Jr.
  • Date: Mon Jan 27 08:43:56 2003

| c) We buy Cisco 5200's in mass volume because they support our rural
| networks better than any other modem bank we've tried (welcome to Oklahoma
| :) and the processor on this wonderful piece of hardware will not support
| the overhead of using a per user access-list methodology to filter the
| majority and whitelist those who need the service.

Use different IP pools, one for regular users, one for whitelisted. Uplink
hop filters netbios, ms-sql, common trojan ports before they get to
customers based on destination IP being from regular pool.


Rubens






Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.