[32318] in North American Network Operators' Group
RE: Operational impact of filtering SMB/NETBIOS traffic?
daemon@ATHENA.MIT.EDU (Roeland Meyer)
Sat Nov 18 23:20:30 2000
Message-ID: <47FE39302BF73B4C93BC84B87341282C1EF8@condor.lvrmr.mhsc.com>
From: Roeland Meyer <rmeyer@mhsc.com>
To: 'Scott Call' <scall@devolution.com>, nanog@nanog.org
Date: Sat, 18 Nov 2000 20:19:12 -0800
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Errors-To: owner-nanog-outgoing@merit.edu
You'd have LOTs of complaint from me and many of my clients. Many of us log
into our external gateway PDCs from foriegn locations. We have shares
because we want shares. You are considering killing off a whole bunch of
legitimate use because some are too brain-dead to not have unintentional
shares on the internet? We use SMB/Samba INSTEAD of NFS because we believe
SMB to be more secure. smb.conf certainly gives more security options than
exports does.
> -----Original Message-----
> From: Scott Call [mailto:scall@devolution.com]
> Sent: Tuesday, November 14, 2000 12:21 PM
> To: nanog@nanog.org
> Subject: Operational impact of filtering SMB/NETBIOS traffic?
>
>
>
>
> Due to an increasing number of intrusions into windows-based machines
> through unprotected shares, I've started filtering both incoming and
> outgoing traffic for our customers on ports 138/139.
>
> So far this has caught a fair amount of traffic coming from
> customers,
> but none have called to complain about a lack of connectivity.
>
> Because this traffic is IP traffic, I wanted to ask others on
> this list
> how they treat SMB traffic on their backbones?
>
> Thanks
> -Scott
>
>
