DOS attacks/ Spoofing attacks

From: P.Willemsen (pwillem@wanadoo.nl)
Date: Tue Jul 26 2005 - 16:03:09 GMT-3

• Next message: Brian McGahan: "RE: CHAP Authentication"
• Previous message: Chris Lewis \(chrlewis\): "RE: Queue with GTS"
• Next in thread: Chris Lewis \(chrlewis\): "RE: DOS attacks/ Spoofing attacks"
• Maybe reply: Chris Lewis \(chrlewis\): "RE: DOS attacks/ Spoofing attacks"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

Could somebody give me a recommendation for configuration DOS/Spoofing
attacks for routers.

interface fast 0/1

ip address 137.1.2.13 255.255.255.252

no ip directed-broadcast

ip access-group list 185 in

!

access-list 185 permit tcp host 137.1.2.13 host 137.1.2.14 eq bgp

access-list 185 permit tcp host 137.1.2.13 eq bgp host 137.1.2.14

access-list 185 deny tcp any any eq bgp log-input

access-list 185 permit icmp any any

access-list 185 deny ip host 137.1.2.14 host 137.1.2.14

access-list 185 deny ip 137.1.0.0 0 0.0.255.255 any

access-list 185 deny ip 137.1.0.0 0.0.255.255

access-list 185 permit ip any 137.1.0.0 0.0.255.255

access-list 185 deny ip any any log-input

Cheers,

Piet

• Next message: Brian McGahan: "RE: CHAP Authentication"
• Previous message: Chris Lewis \(chrlewis\): "RE: Queue with GTS"
• Next in thread: Chris Lewis \(chrlewis\): "RE: DOS attacks/ Spoofing attacks"
• Maybe reply: Chris Lewis \(chrlewis\): "RE: DOS attacks/ Spoofing attacks"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Sep 04 2005 - 17:00:31 GMT-3