Educause Security Discussion mailing list archives

Re: Connectivity problems with the US Army

From: Jay Tumas <jay_tumas () HARVARD EDU>
Date: Fri, 19 Jan 2007 07:33:03 -0500

We have run into similar issues over the past decade.  The .mil domain typically
gets pretty defensive when they pick up on any amount of probing, especially
from .edu domains.  My experience has been that if you can verify the offending
systems are clean, and you are talking with the right folks, you can get the
block removed - if not for your entire network, then for the subdomains that
require this access for specific tasks.  I do (did) have a good contact that
was very responsive and was able to open the .mil domain up to Harvard traffic.
I will see if I can dig up his contact info and forward it along.

J

Brock, Anthony - NET wrote:

Oregon State University recently noticed that we were being blocked from
accessing all army.mil domains and resources. The block includes access
to their DNS and email servers. We have since learned that this block
was implemented as a result of probes from machines compromised as a
result of the Symantec vulnerability. While we had hoped that the
situation would correct itself, we've since learned that this may not
happen.

We have had zero luck trying to deal directly with the Army
administrators. As a result of the impact on several campus groups, my
administration is looking to escalate this into the political realm. If
possible, I would like to give them an idea of how many other
institutions may have been affected.

Is anyone else encountering this problem?

One of the administrators at the Army NOC indicated that most of the
.edu IP space was being blocked. I would like to have a more solid
foundation before I take that type of assertion to my administration.
Thanks in advance!

Tony

Anthony Brock
Senior Network Security Engineer
Oregon State University - Network Engineering
http://oregonstate.edu/net/security/


--
****************************************************************
Jay Tumas, NSA/IAM,IEM

- Network Operations Manager
- Network Security and Incident Response Team Manager
- Longwood Medical Area Technical Subcommittee Chair
- NEECTF Member/InfraGard Member, I have run into this int he pastBoard of Directors

Harvard University - UIS/Network Operations Center
60 Oxford Street, Suite 132
Cambridge, MA. 02138

Office: 617-496-8500  VoIP/SoftPhone:  617-384-6530
Cell:   617-733-6169  Cell 2-way/Email:  6177336169 () vtext com
****************************************************************
"The first method for estimating the intelligence of a ruler
is to look at the men he has around him." - Niccolo Machiavelli

Current thread:

Connectivity problems with the US Army Brock, Anthony - NET (Jan 18)
- <Possible follow-ups>
- Re: Connectivity problems with the US Army Mike Iglesias (Jan 18)
- Re: Connectivity problems with the US Army Jay Tumas (Jan 19)
- Re: Connectivity problems with the US Army Brock, Anthony - NET (Jan 19)
- Re: Connectivity problems with the US Army Brock, Anthony - NET (Jan 19)
- Re: Connectivity problems with the US Army Jamie A. Stapleton (Jan 19)
- Re: Connectivity problems with the US Army Samuel Liles (Jan 19)
- Re: Connectivity problems with the US Army Randy Marchany (Jan 19)
- Re: Connectivity problems with the US Army Mike Iglesias (Jan 19)
- Re: Connectivity problems with the US Army Brock, Anthony - NET (Jan 19)
- Re: Connectivity problems with the US Army David Gillett (Jan 19)
- Re: Connectivity problems with the US Army Pace, Guy (Jan 19)
- Re: Connectivity problems with the US Army HALL, NATHANIEL D. (Jan 19)

(Thread continues...)