Re: ISPs' willingness to take action

["Brian Bruns" <bruns () 2mbit com>]

----- Original Message ----- 
From: <kenw () kmsi net>
To: <nanog () nanog org>
Sent: Sunday, October 26, 2003 8:01 PM
Subject: ISPs' willingness to take action

> By the way, can anybody explain to me a legitimate use for port 135/137
> traffic across the Internet, like it's somebody's private LAN?  Seems to
me
> anybody who still thinks that's legitimate is living in the past.

> So, the big question: why don't ISPs do more of this?  Are they afraid of
> client reaction?  Doesn't wash, for me: most clients would be highly
> grateful, and all it really takes for the remainder is fair warning.
Cost?
> Again, you can judge for yourselves how low the fruit you choose to pick;
> the biggest gains have the best ROI.

> Happy clients, liberated bandwidth, faster servers -- what's to loose?

Problem is, some applications, like Outlook for example (if I remember
correctly), like to use the 135, 137, 139 and others to connect to the
Exchange server.  You block them, and it will start to croak.  You have alot
of home users not using a VPN to connect to their office exchange servers.
I used to do this myself at times.

When you sell a service to someone, and neglect to mention you block certain
incoming ports, especially to a possible business user or home user trying
to access their office, you put yourself in a really bad position.



--------------------------
Brian Bruns
The Summit Open Source Development Group
Open Solutions For A Closed World / Anti-Spam Resources
http://www.sosdg.org
ICQ: 8077511