I agree, running monitoring from my laptop at home at nights/weekends/vacations/holidays... I need to use most of those ports. My answer was VNP/tunnel everything. -----Original Message----- From: John Levine [mailto:johnl@iecc.com] Sent: Thursday, May 14, 2009 6:36 PM To: nanog@nanog.org Cc: rs@seastrom.com Subject: you're not interesting, was Re: another brick in the wall[ed garden]
Dear Sprint EVDO people,
Your man-in-the-middle hijacking of UDP/53 DNS queries against nameservers that I choose to query from my laptop on Sprint EVDO is not appreciated. Even less appreciated is your complete blocking of TCP/53 DNS queries.
If I were an ISP, and I knew that approximately 99.9% of customer queries to random name servers was malware doing fake site phishing or misconfigured PCs that will work OK and avoid a support call if they answer the DNS query, with 0.1% being old weenies like us, I'd do what Sprint's doing, too. If you're aware of a mechanical way for them to tell the difference, we're all ears. Regards, John Levine, johnl@iecc.com, Primary Perpetrator of "The Internet for Dummies", Information Superhighwayman wanna-be, http://www.johnlevine.com, ex-Mayor "More Wiener schnitzel, please", said Tom, revealingly.