On Wed, 14 Jun 2006, Church, Chuck wrote:
> > Since this technique requires a IPinIP or GRE tunnel, wouldn't blocking > these two protocols to/from the hosts be sufficient? Assuming of course > the customer's host isn't using that normally. sure, but those are probably just convenience things, what happens when they setup an ssl tunnel? or http tunnel or ping tunnel?