[32221] in North American Network Operators' Group
Re: Operational impact of filtering SMB/NETBIOS traffic?
daemon@ATHENA.MIT.EDU (Steven J. Sobol)
Tue Nov 14 17:58:42 2000
Date: Tue, 14 Nov 2000 17:48:35 -0500 (EST)
From: "Steven J. Sobol" <sjsobol@NorthShoreTechnologies.net>
To: "Gary E. Miller" <gem@rellim.com>
Cc: Scott Call <scall@devolution.com>, nanog@nanog.org
In-Reply-To: <Pine.LNX.4.30.0011141230080.14907-100000@catbert.rellim.com>
Message-ID: <Pine.LNX.4.21.0011141747440.8103-100000@amethyst.nstc.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, 14 Nov 2000, Gary E. Miller wrote:
> I have had my upstream filter these ports on me before. They
> get an angry call right away. I use SMB to mount remote shares,
> do remote authentication and remote printing. Sure most people
> do not know how to do this, but I have taught a lot of my
> customers to do it. Road Warriors love it. They never want to
> go back to the old ways.
>
> I have worked at several ISPs that found the easiest way
> to reduce the customer list was to start filtering. A lot of
> folks do not complain, they just move on to another ISP.
I think SMB attacks are a serious problem and did not have problems
at the one place I worked where the ISP started arbitrarily filtering SMB
- the only problem was that they gave no warning before doing it.
> A good compromise is to notify your customers that you are
> providing the extra "service" and let them opt-out if they
> choose.
Agreed.
--
Steve Sobol, BOFH, President 888.480.4NET 866.DSL.EXPRESS 216.619.2NET
North Shore Technologies Corporation http://NorthShoreTechnologies.net
JustTheNet/JustTheNet EXPRESS DSL (ISP Services) http://JustThe.net
mailto:sjsobol@NorthShoreTechnologies.net Proud resident of Cleveland, OH
