Jon thechunk at home.com
Fri Aug 24 11:16:42 UTC 2001

This would make me happy.

On Thu, Aug 23, 2001 at 04:46:18PM -0500, Daniel Pfile wrote:
> BTW, my cable modem is a CyberSURFER Wave Modem. The thin dark grey one.
> If this thing about only newer modems blocking port is true, that means the 
> modems have the ability to block ports. There's also a web interface on 
> those modems.
> So it seems like the logical sane solution for cox at home, the internet, and 
> the users is to:
> 1: Cap upstream to 256k (done, used to be good enough...)
> 2: Disable incomming ports for known insecure services in the cable modem
> 3: Allow a user to re-enable these ports with the modem's web interface
> 4: Disable the ability to turn on ports if the user is using a huge amount 
> of bandwidth. You don't have to monitor trafic, SNMP should suffice, just 
> if the user is using 90% of their upstream for 7 days solid, contact them, 
> let the know the problem (a warning), if they continue, kill their ports.
> -- or --
> 4: If the machine is reported used in a DOS/DDOS attack, block the ports to 
> stop the attack and let the user know.
> Not perfect, but I just woke up from a nap and I'm a bit groggy, so feel 
> free to correct me.
> -- Daniel

More information about the OLUG mailing list