zotob - blocking tcp/445
Petri Helenius
pete at he.iki.fi
Wed Aug 17 15:56:21 UTC 2005
Daniel Senie wrote:
>
> One of the dangers is more and more stuff is being shoved over a
> limited set of ports. There are VPNs being built over SSL and HTTP to
> help bypass firewall rule restrictions. At some point we end up with
> another protocol demux layer, and a non-standard one at that if we
> push more and more restrictive filters out there. This in the long run
> is going to cause many problems.
Isn't SSL VPN exactly another protocol demux layer, though it might be a
standard one?
Pete
More information about the NANOG
mailing list