* Stephen J. Wilcox: > On Mon, 4 Apr 2005, Gadi Evron wrote: > >> Anyone ever considered just closing these ports? People will pay you >> more and just for your ACL services! You can put all your troubles > > you would need to do this on a per customer interface basis ie not > at an aggregation point but on each ppp interface..
Not necessarily. Some Windows malware prefers local address ranges, but not all. If you quickly disconnect those who caught something, it's a great help in keeping the number of infected machines down. You could even spin this in a way that encourages your customers to recommend you to their friends: no hassle with the filters.