On Tue, Sep 16, 2003 at 10:26:50PM -0700 Steve Thomas wrote : > router(config)# access-list 101 deny tcp any host 64.94.110.11 eq 80
Don't do this. If Verisign are stupid enough to do this, let's make sure they get ALL the traffic :-). Also port 80 isn't the biggest problem: think mail.... think what happens if something returns legal DNS entry but is unroutable - you don't want to see your mail queue (unless you have dealt with this in the MTA). -- Ian ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk