> Is it just me that feels that blocking a port which is known to be used > to perform billions of scans is only proper?
the second, and important part of the, question is whether there are legitimate packets to that port which want to cross your border. for 135, i am not aware of any that should cross my site's border un-tunneled. randy
