On Tue, Sep 16, 2003 at 10:26:50PM -0700 Steve Thomas wrote :

> router(config)# access-list 101 deny tcp any host 64.94.110.11 eq 80

Don't do this.

If Verisign are stupid enough to do this, let's make sure they get ALL the
traffic :-).

Also port 80 isn't the biggest problem: think mail.... think what happens if
something returns legal DNS entry but is unroutable - you don't want to see
your mail queue (unless you have dealt with this in the MTA).

--
Ian


-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Spamassassin-talk mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/spamassassin-talk

Reply via email to