On Thu, 15 Sep 2005 10:29:27 +0300
Kim Onnel <[EMAIL PROTECTED]> wrote:
> 80 deny udp any any eq 1026 (3481591 matches)
If you don't already know, it might be worth looking at a detailed
breakdown of the source ports hitting that rule. It may be blocking
a good amount of DNS and NTP traffic for
Michael Tokarev wrote:
www.dshield.org, www.mynetwatchman.org ?
That should be: www.mynetwatchman.COM ;-)
Both are excellent resources.
-Jim P.
Luke Parrish wrote:
>
> Not quite looking for tips to manage my network and ACL's or if should
> or should not be blocking, more looking for actual ports that other
> ISP's are blocking and why.
>
> For example:
>
> port 5 worm 2.5
> port 67 virus 8.2
www.dshield.org, www.mynetwatchman.org ?
On Wed, Sep 14, 2005 at 08:26:54PM -0400, Robert E.Seastrom wrote:
...
> When ARPA and MILNET were segmented in 1984, there were
> (Fuzzball-based IIRC) mail gateways between the two networks.
...
I hadn't thought back to that. From what I remember of the intent, and
the little I knew about the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SANOG 7
16-24 January 2006, Mumbai, India
Call for Papers
http://www.sanog.org/sanog7/cfp.htm
Deadline for proposals : 1 December, 2005
Acceptance Notification: 15 December, 2005
Paper Confirmation : 1 January, 2006
Please submit Online at https:/
On Thu, 15 Sep 2005, jc dill wrote:
>
> My personal website is hosted with DreamHost. They sent this out to their
> customers today. Of interest to NANOG is the bit about the N+1 redundant
> genset system having 2 generators quickly fail, and in doing so having the
> UPS fail and the entire
-- Forwarded message --
Date: Wed, 14 Sep 2005 16:39:54 -0400 (EDT)
From: Manish Karir <[EMAIL PROTECTED]>
To: nanog@merit.edu
Subject: Re: 12/8 problems?
I'm sorry I'm a bit late on this thread but wanted to point out that you can
view some of the relevant information on thi
My personal website is hosted with DreamHost. They sent this out to
their customers today. Of interest to NANOG is the bit about the N+1
redundant genset system having 2 generators quickly fail, and in doing
so having the UPS fail and the entire data center go dark. Something to
consider i
On Thu, 15 Sep 2005, John Levine wrote:
>
> >I saw this evening that CentralNic had added *.uk.com to point to
> >itself.
>
> Why should anyone care? It's just one of ten million dot-com domains.
They have quite a lot of domain name customers who don't know enough to
buy domain names from a real
Kim Onnel wrote:
80 deny udp any any eq 1026 (3481591 matches)
This will make one out of 4000 of your udp "sessions" to fail with older
stacks which have high ports from 1024 to ~5000.
Pete
Depends where you will put your ACL too,
we have this on our Ingress from the internet
10 deny ip 127.0.0.0 0.255.255.255 any (118 matches)
20 deny ip 10.0.0.0 0.255.255.255 any (23297 matches)
30 deny ip 172.16.0.0 0.15.255.255 any (8 matches)
40 deny ip 192.168.0.0 0.0.255.255 a
11 matches
Mail list logo