North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Operational impact of filtering SMB/NETBIOS traffic?

  • From: Shawn McMahon
  • Date: Sun Nov 19 13:10:55 2000

On Sun, Nov 19, 2000 at 09:06:06AM -0800, Roeland Meyer wrote:
> 
> How closely have you looked at Samba sources? BTW, I've done it through SSH
> tunnels too. The problem is that some SAs (a fair large percentage) think
> that a port labeled "secure" (port 22) means that they have to take special
> care to make sure that it is blocked (yes, they are the recently
> lobotomized). So, three-quarters of the time, a VPN is not do-able and you
> are forced to go plain-text direct. If, in addition, you block the NetBIOS
> ports then you block application-level access for 80% of internet users.

So you're hypothesizing that this customer will:

1) Be behind a firewall that blocks ssh.

2) Be behind a firewall that DOESN'T block SMB.

3) Not be in a position to have that policy changed.

4) Not be violating his corporation's policies when he connects through
you.

Attachment: pgp00015.pgp
Description: PGP signature