nanog mailing list archives
Re: [NANOG] Microsoft.com PMTUD black hole?
From: SML <sml () lordsargon com>
Date: Wed, 7 May 2008 17:18:51 -0500
On 7-May-2008, at 17:07:06, Deepak Jain wrote:
Many non-SP IT folks think they understand TCP, grudgingly accept UDP for DNS from external sources and think everything else is bollocks. Many *might* have a fit if they saw Microsoft accepting ICMPs because that seems inconsistent with their knowledge of turn- the-knob network security. To their view, their Linksys/Netgear/ whathaveyou COTS firewalls block everything too. I don't think I'm exaggerating here.
No, you are not. I have seen the same from "firewall engineers" at large companies, people who, supposedly, have done "network security" for years. Even after showing them numerous Web sites detailing current best practices, especially Rob Thomas's fine site, these folks would not change their practices. Some days it is hard to not give in to the "I give up" feelings. _______________________________________________ NANOG mailing list NANOG () nanog org http://mailman.nanog.org/mailman/listinfo/nanog
Current thread:
- Re: [NANOG] Microsoft.com PMTUD black hole?, (continued)
- Re: [NANOG] Microsoft.com PMTUD black hole? Tomas L. Byrnes (May 07)
- Re: [NANOG] Microsoft.com PMTUD black hole? Nathan Anderson/FSR (May 07)
- Re: [NANOG] Microsoft.com PMTUD black hole? Tomas L. Byrnes (May 07)
- Re: [NANOG] Microsoft.com PMTUD black hole? Nathan Anderson/FSR (May 07)
- Re: [NANOG] Microsoft.com PMTUD black hole? Bjørn Mork (May 08)
- Re: [NANOG] Microsoft.com PMTUD black hole? Joel Jaeggli (May 08)
- Re: [NANOG] Microsoft.com PMTUD black hole? Iljitsch van Beijnum (May 08)
- Re: [NANOG] [OPSEC] Microsoft.com PMTUD black hole? Smith, Donald (May 08)
- Re: [NANOG] Microsoft.com PMTUD black hole? Hank Nussbacher (May 08)
- Re: [NANOG] Microsoft.com PMTUD black hole? Deepak Jain (May 07)
- Re: [NANOG] Microsoft.com PMTUD black hole? SML (May 07)
- Re: [NANOG] Microsoft.com PMTUD black hole? Tony Finch (May 08)
- Re: [NANOG] Microsoft.com PMTUD black hole? Blaine Christian (May 08)
- [NANOG] msnalerts () microsoft com invalid now (Was Re: Microsoft.com PMTUD black hole?) Mark Smith (May 16)
- [NANOG] msnalert () microsoft com valid (was Re: msnalerts () microsoft com invalid now) Mark Smith (May 16)