zotob - blocking tcp/445
Christopher L. Morrow
christopher.morrow at mci.com
Wed Aug 17 17:34:29 UTC 2005
On Wed, 17 Aug 2005, William Warren wrote:
>
> I may be off base here. Can't an ips look at the traffic; say on 443
> and figure out whether the traffic is malicious or not? If so then let
> it filter it. I know IPS's aren't perfect, but, i would prefer this
> router be taken, if available and sensible including network outage or
> DDOS, than a hard block. A quick block to mitigate and then an IPS rule
and you have an IPS that works on oc-192 SONET links? what about the
coming oc-768?
More information about the NANOG
mailing list