[44979] in North American Network Operators' Group
Re: Blocking Internet Gaming
daemon@ATHENA.MIT.EDU (Brian Wallingford)
Sun Jan 6 22:00:48 2002
Date: Sun, 6 Jan 2002 21:58:40 -0500 (EST)
From: Brian Wallingford <brian@meganet.net>
To: Scott Gifford <sgifford@suspectclass.com>
Cc: James <james@james-web.net>, nanog@merit.edu
In-Reply-To: <lypu4mev6e.fsf@gfn.org>
Message-ID: <Pine.GSO.4.21.0201062152340.20665-100000@ripple>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
:Doesn't that cause trouble with occasionally blocking ephemeral ports?
:If you're not allowing incoming connections of any kind (including
:non-PASV FTP) it shouldn't matter, but blocking ports above 1024
:always makes me nervous...
That's what "permit tcp any any established" is for.
cheers,
brian
