[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] MSN\Qwest ships DSL modem with "unconfigurable" firewall

To: "Full-Disclosure (E-mail)" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] MSN\Qwest ships DSL modem with "unconfigurable" firewall
From: James Lay <jlay@xxxxxxxxxxxx>
Date: Fri, 2 Apr 2004 10:19:59 -0700

Hey all!

Real quick...just implemented a Cisco VPN concentrator here and lo and
behold certain users couldn't get in.  The concentrator is setup with the
standard UDP port 500.  All users BESIDES MSN\Qwest DSL users could get
right on.  After a few calls and some frustration, Qwest informed us that
the firewall on the DSL router they ship is "unconfigurable"...odd that it
allowed Windows VPN TCP port 1723 but not UDP 500.  I've also heard rumor
that certain online games wouldn't work either with these DSL modems.  Moral
of the Story:  Research your VPN solutions for server AND clients before
implementing ;-)

James Lay
Network Manager/Security Officer
AmeriBen Solutions/IEC Group
Semper Vigilans!!!

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] MSN\Qwest ships DSL modem with "unconfigurable" firewall
  - From: Volker Tanger

Prev by Date: Re: [Full-Disclosure] Block notification / bounce mails (as in DDOS)
Next by Date: Re: [Full-Disclosure] FD should block attachments
Previous by thread: [Full-Disclosure] [SECURITY] [DSA 471-1] New interchange packages fix information leak
Next by thread: Re: [Full-Disclosure] MSN\Qwest ships DSL modem with "unconfigurable" firewall
Index(es):
- Date
- Thread