It worked fine for us after multiple tests.FYI - we tried this with the worm and it *doesn't* work. msblast.exe spoofed the source address as the loopback address handed out from our DNS. We instead created an empty windowsupdate.com zone.
But thanks for the info, we have alternate counter-measures ready to be installed too.
Brgrds
Laurent LEVIER IT Systems & Networks Security Expert
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
