RE: about SYN attack,how do we avoid this by configuring the rout er?

From: steven.j.nelson@xxxxxx
Date: Fri Mar 29 2002 - 09:17:13 GMT-3

• Next message: steven.j.nelson@xxxxxx: "Frame DLCI"
• Previous message: John Mistichelli: "RE: Re: Filtering SAPs in NLSP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
All

Quite simple,

1. Create an access list that defines the traffic you want to intercept SYNS
from.
2. Issue the command ip tcp intercept list (Access list number)
3. set the ip tcp intercept mode (watch or intercept)

The timers can be tweaked, etc etc.

The difference between watch and intercept is explained on CCO, do a search
for IP TCP intercept.

Cheers

Steve

-----Original Message-----
From: Robert L. DuBell [mailto:bobdu11@cox.net]
Sent: 29 March 2002 06:42
To: Louis Young; ccielab
Subject: Re: about SYN attack,how do we avoid this by configuring the
router?

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/secu
r_c/scprt3/scddenl.htm

----- Original Message -----
From: "Louis Young" <tonyblair@etang.com>
To: <ccielab@groupstudy.com>
Sent: Friday, March 29, 2002 3:45 AM
Subject: about SYN attack,how do we avoid this by configuring the router?

> pls help me by offer the proper links.Thanks in advance.

• Next message: steven.j.nelson@xxxxxx: "Frame DLCI"
• Previous message: John Mistichelli: "RE: Re: Filtering SAPs in NLSP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:57:25 GMT-3