Path: utzoo!utgpu!news-server.csri.toronto.edu!rutgers!usc!zaphod.mps.ohio-state.edu!mips!wdl1.wdl.fac.com!wdl51!wrl
From: wrl@wdl51.wdl.fac.com (Bill Lewandowski)
Newsgroups: comp.dcom.sys.cisco
Subject: Re: NFS over the WAN
Keywords: NFS cisco WAN
Message-ID: <1990Nov23.055308.6327@wdl1.wdl.fac.com>
Date: 23 Nov 90 05:53:08 GMT
References: <1057@inews.intel.com>
Sender: root@wdl1.wdl.fac.com (SUPER USER)
Organization: Loral Western Development Labs
Lines: 15
Nntp-Posting-Host: wdl51

We have a wide range of filters in. Filtering port 111 will
stop someone from nfs mounting your file system across the Internet'
or private net. We allow any our going UDP but allow any incomming
UDP greater than 1022. This allows return UDP answers for name
services.

We only allow smtp and udp to port 53 (name requests in).
We also block port 6000 (TCP and UDP) (X-Windows).

Bill

-- 
Bill Lewandowski		LORAL Western Development Labs
(408) 473-4362			Internet: wrl@wdl1.wdl.fac.com
FAX: (408) 473-7926		UUCP: wdl1!wrl