On Sep 5, 2012, at 5:12 PM, Izaac <iz...@setec.org> wrote: > > Since tcp25 filtering has been so successful, we should deploy > filters for everything except tcp80 and tcp443 and maaaybe tcp21 -- > but NAT already does so much to enhance the user experience there > already. And what with ISP customers using their provided DNS and > mail service exclusively, there's no reason to permit udp53, tcp110, > tcp143, tcp993, tcp995 either. Really, only evil people use anything > but the web. Any other traffic undoubtedly a bot from which they > ought to be protected.
Izaac, You do realize that that the NANOG mailing is archived and some helpful person will quote you to their favorite legislator? James R. Cutler james.cut...@consultant.com