Blocking port udp/tcp 1433/1434
Jon Lewis
jlewis at lewis.org
Wed May 11 22:12:58 UTC 2005
On Wed, 11 May 2005, Christopher L. Morrow wrote:
> > Is there still justification for denying transit for ms-sql slammer ports?
>
> probably not, but that's really a local-to-your-asn decision.
I dunno about that. I know it was more than a year ago, but at NANOG
Miami, someone brought either SQL slammer or a vulnerable laptop and
killed the network for a while. Running tcpdump on my notebook, I noticed
fairly constant slammer probes while there. We still block it here, and
the last time we accidentally removed that filter, a colo customer was
promptly infected.
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
More information about the NANOG
mailing list