nanog mailing list archives
Re: Ingress filtering on transits, peers, and IX ports
From: Randy Bush <randy () psg com>
Date: Mon, 19 Oct 2020 22:18:44 -0700
term blocked-ports { from { protocol [ tcp udp ]; first-fragment; destination-port [ 0 sunrpc 135 netbios-ns netbios-dgm netbios-ssn 111 445 syslog 11211]; } then { sample; discard; } } and i block all external access to weak devices such as switches, pdus, ipmi, ... randy
Current thread:
- Re: Ingress filtering on transits, peers, and IX ports, (continued)
- Re: Ingress filtering on transits, peers, and IX ports Matt Harris (Oct 13)
- RE: Ingress filtering on transits, peers, and IX ports Jean St-Laurent via NANOG (Oct 13)
- Re: Ingress filtering on transits, peers, and IX ports Brian Knight via NANOG (Oct 13)
- Re: Ingress filtering on transits, peers, and IX ports Marcos Manoni (Oct 13)
- Re: Ingress filtering on transits, peers, and IX ports Nikolas Geyer (Oct 13)
- Re: Ingress filtering on transits, peers, and IX ports Brandon Martin (Oct 14)
- Re: Ingress filtering on transits, peers, and IX ports Brian Knight via NANOG (Oct 14)
- Re: Ingress filtering on transits, peers, and IX ports Brian Knight via NANOG (Oct 14)
- RE: Ingress filtering on transits, peers, and IX ports Jean St-Laurent via NANOG (Oct 15)
- Re: Ingress filtering on transits, peers, and IX ports Brian Knight via NANOG (Oct 19)
- Re: Ingress filtering on transits, peers, and IX ports Randy Bush (Oct 19)
- Re: Ingress filtering on transits, peers, and IX ports Baldur Norddahl (Oct 20)
- Re: Ingress filtering on transits, peers, and IX ports Brian Knight via NANOG (Oct 22)
- RE: Ingress filtering on transits, peers, and IX ports adamv0025 (Oct 23)
- Re: Ingress filtering on transits, peers, and IX ports Tim Durack (Oct 20)
- Re: Ingress filtering on transits, peers, and IX ports Marcos Manoni (Oct 20)
- Re: Ingress filtering on transits, peers, and IX ports Dobbins, Roland (Oct 20)
- Re: Ingress filtering on transits, peers, and IX ports Nick Hilliard (Oct 14)
- Re: Ingress filtering on transits, peers, and IX ports Mike Hammett (Oct 14)
- Re: Ingress filtering on transits, peers, and IX ports Jared Mauch (Oct 14)