nanog mailing list archives

Re: Operational impact of filtering SMB/NETBIOS traffic?

From: Shawn McMahon <smcmahon () eiv com>
Date: Sun, 19 Nov 2000 13:08:09 -0500

On Sun, Nov 19, 2000 at 09:06:06AM -0800, Roeland Meyer wrote:


How closely have you looked at Samba sources? BTW, I've done it through SSH
tunnels too. The problem is that some SAs (a fair large percentage) think
that a port labeled "secure" (port 22) means that they have to take special
care to make sure that it is blocked (yes, they are the recently
lobotomized). So, three-quarters of the time, a VPN is not do-able and you
are forced to go plain-text direct. If, in addition, you block the NetBIOS
ports then you block application-level access for 80% of internet users.


So you're hypothesizing that this customer will:

1) Be behind a firewall that blocks ssh.

2) Be behind a firewall that DOESN'T block SMB.

3) Not be in a position to have that policy changed.

4) Not be violating his corporation's policies when he connects through
you.

Attachment: _bin
Description:

Current thread:

RE: Operational impact of filtering SMB/NETBIOS traffic?, (continued)
- RE: Operational impact of filtering SMB/NETBIOS traffic? Roeland Meyer (Nov 18)
  - Re: Operational impact of filtering SMB/NETBIOS traffic? Jim Mercer (Nov 18)
    - RE: (Already happening) Operational impact of filtering SMB/NETBIOS traffic? Derrick (Nov 18)
    - Re: (Already happening) Operational impact of filtering SMB/NETBIOS traffic? Dana Hudes (Nov 18)
  - Re: Operational impact of filtering SMB/NETBIOS traffic? Shawn McMahon (Nov 19)
    - Re: Operational impact of filtering SMB/NETBIOS traffic? Travis Pugh (Nov 19)
  - Re: Operational impact of filtering SMB/NETBIOS traffic? Valdis . Kletnieks (Nov 19)
- RE: Operational impact of filtering SMB/NETBIOS traffic? Roeland Meyer (Nov 19)
  - Re: Operational impact of filtering SMB/NETBIOS traffic? Jim Mercer (Nov 19)
- RE: Operational impact of filtering SMB/NETBIOS traffic? Roeland Meyer (Nov 19)
  - Re: Operational impact of filtering SMB/NETBIOS traffic? Shawn McMahon (Nov 19)
  - Re: Operational impact of filtering SMB/NETBIOS traffic? Adam Rothschild (Nov 20)
    - ISPs as content-police or method-police Ehud Gavron (Nov 20)
    - Re: ISPs as content-police or method-police Valdis . Kletnieks (Nov 20)
    - RE: ISPs as content-police or method-police Christian Kuhtz (Nov 20)
    - Re: ISPs as content-police or method-police Shawn McMahon (Nov 20)
    - Re: ISPs as content-police or method-police Ben Browning (Nov 20)
    - RE: ISPs as content-police or method-police Christian Kuhtz (Nov 20)
    - Re: ISPs as content-police or method-police John Kristoff (Nov 20)
    - Re: ISPs as content-police or method-police joshua stein (Nov 20)
    - RE: ISPs as content-police or method-police Mark Radabaugh (Nov 20)

(Thread continues...)