Blocking port udp/tcp 1433/1434

Jon Lewis jlewis at lewis.org
Wed May 11 22:22:26 UTC 2005


On Wed, 11 May 2005, MARLON BORBA wrote:

>
> <evil grin>
> if you are sure there are no more infected machines out there...
> </evil grin>

There will always be infected machines out there.  The question is, are
there infectable machines on your network, and will your network contain
them or melt down if you allow them to get infected?

sql slammer must have been a huge money maker for cisco and other switch
vendors (any that support per-port rate-limiting or policing) as networks
scrambled to upgrade infrastructure to contain the next similar outbreak
rather than melt under the load.

----------------------------------------------------------------------
 Jon Lewis                   |  I route
 Senior Network Engineer     |  therefore you are
 Atlantic Net                |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________



More information about the NANOG mailing list