nanog mailing list archives

RE: Customer-facing ACLs

From: "Frank Bulk - iNAME" <frnkblk () iname com>
Date: Tue, 11 Mar 2008 21:57:25 -0500


Those ACLs were added when I came on board.  Again, only one complaint in 3+
years.

And customers wonder why I shudder when they tell me that they plug in their
Win9x computers directly into their cable modem.  I can't imagine how much
worse it would be if I didn't block the SMB ports.

Frank

-----Original Message-----
From: owner-nanog () merit edu [mailto:owner-nanog () merit edu] On Behalf Of
Scott Weeks
Sent: Tuesday, March 11, 2008 9:35 PM
To: nanog () merit edu
Subject: RE: Customer-facing ACLs

--- frnkblk () iname com wrote: --------------------

We have a two-dozen line long ACL applied to our CMTS and BRAS blocking
Windows and "virus" ports and have never had a complaint or a problem.  We
do have a more sophisticated residential or large-biz customers ask, but
----------------------------------------


I'd like to ask the same question of you that I just did to Chris.  How'd
you implement that or has it been there since the network was new?

scott

Current thread:

Re: Customer-facing ACLs, (continued)
- - - Re: Customer-facing ACLs Ang Kah Yik (Mar 10)
    - RE: Customer-facing ACLs Frank Bulk - iNAME (Mar 10)
    - Re: Customer-facing ACLs JC Dill (Mar 10)
  - Re: Customer-facing ACLs Christopher Morrow (Mar 10)
  - Re: Customer-facing ACLs Justin Shore (Mar 10)
- Customer-facing ACLs mack (Mar 10)
- Re: Customer-facing ACLs Scott Weeks (Mar 11)
- Re: Customer-facing ACLs Scott Weeks (Mar 11)
- RE: Customer-facing ACLs Scott Weeks (Mar 11)
  - RE: Customer-facing ACLs Sean Donelan (Mar 11)
  - RE: Customer-facing ACLs Frank Bulk - iNAME (Mar 11)
- RE: Customer-facing ACLs Scott Weeks (Mar 12)
  - RE: Customer-facing ACLs Frank Bulk - iNAME (Mar 12)