for one thing, there has been some speculation, which may even
be true, that Carnivore is depends on snooping RADIUS accounting
data to help determine which traffic to analyze/capture. if that is
true, then it is most likely only useful in dial-up scenarios.
for at least some vpn technologies, i don't see how vpn traffic
could cause routers to choke on the traffic being tunneled (as
opposed to there being too much of it). encapsulation shouldn't
cause a problem for intermediate routers...
-paul
--On Tuesday, 15 August, 2000 18:50 -0400 [EMAIL PROTECTED] wrote:
> It's probably not Carnivore they're worried about. It's probably older
> routers that are choking on some vendors VPN traffic. We have encountered
> the problem with third party VPN's generating traffic that chokes certain
> older routers.
>
> The business incentives mentioned earlier (VPN for a price) carry a lot
> more weight your providers sudden desire to sniff traffic...installing
> Carnivore for the fun of it would be commercial suicide for an ISP or
> provider.... they don't like the system anyway.
>
> dgp
>
>
>
>
>
> [EMAIL PROTECTED] on 08/15/2000 02:21:30 PM
>
>
>
> To: [EMAIL PROTECTED], [EMAIL PROTECTED]
>
> cc: (bcc: Duncan Perry/Elronsw)
>
>
>
> Subject: Re: Cable Modem security
>
>
>
>
>
>
>
> We have one employee that uses a cable modem in California, and the
> provider states in their website that they are firewalled, etc... and
> yet, there are at least 5 attempts to breach the system daily.
>
> It is the responsibility of the provider to carry the IP packets and not
> bother with what the contents actually are. you have a right to have a
> secure connection and they (the provider) should provide that for you,
> after all, you are paying for it, aren't you?
>
> Sounds like the cable provider is getting ready to install a "Carnivore"
> based system and don't want any secure ip packets travelling across their
> network. <G>
>
> just my .02 cents worth.
>
> TJ
> ProTech Group, BWI
>
> I've seen alot of talk about cable modem security (or lack of) and I've
> got
> an interesting twist to the story. I'm curious if anyone else has run
> across this.
>
> I have cable modem service at home. I have a firewall set up and
> occasionally I connect through a VPN tunnel to a local office or to the
> corporate office to transfer files or to download email. Well....my
> cable
> modem provider just changed the subscriber agreement. Basically it says
> that if I use a VPN or a VPN tunneling protocol on their network my
> service
> will be terminated! I can't believe that I'm going to have to change
> providers because I'm protecting my data!
>
> Has anyone else run into this?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
