RE: SNMP warning from CERT yesterday

From: Jason Graun (jgraun@xxxxxxxxxx)
Date: Wed Feb 13 2002 - 14:34:06 GMT-3

• Next message: Carolyn Camarda: "Re: route-map logic"
• Previous message: Babacar Diop: "bootcamp lab#5"
• Next in thread: Joseph Ezerski: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Joseph Ezerski: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Larson, Chris (Contractor): "RE: SNMP warning from CERT yesterday"
• Maybe reply: James Self: "RE: SNMP warning from CERT yesterday"
• Maybe reply: StudyManiac: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Matt Wagner: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Jay Hennigan: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Frank Jimenez: "RE: SNMP warning from CERT yesterday"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Are you allowing SNMP ports to come in on your firewall?

Jason C. Graun CCNP CCDA MCSE
Network Engineering

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Matt Wagner
Sent: Wednesday, February 13, 2002 11:04 AM
To: ccielab@groupstudy.com
Subject: OT: SNMP warning from CERT yesterday

Any thoughts on the SNMP warning from CERT yesterday? The
recommendations
were for obvious things: only explicitly permit traffic; don't open LAN

protocols on your perimeter, take your management subnet out of band,
etc.
One thing was troubling, though. X-Force says that Cisco routers
configured
to filter SNMP traffic might fail to do so and permit a DoS attack.
Huh?
Anybody have better information on less obvious steps to take? Turning
off
SNMP on my private network seems a bit extreme since I'm using Network
Management Software.

Matt

• Next message: Carolyn Camarda: "Re: route-map logic"
• Previous message: Babacar Diop: "bootcamp lab#5"
• Next in thread: Joseph Ezerski: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Joseph Ezerski: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Larson, Chris (Contractor): "RE: SNMP warning from CERT yesterday"
• Maybe reply: James Self: "RE: SNMP warning from CERT yesterday"
• Maybe reply: StudyManiac: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Matt Wagner: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Jay Hennigan: "RE: SNMP warning from CERT yesterday"
• Maybe reply: Frank Jimenez: "RE: SNMP warning from CERT yesterday"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 13:46:21 GMT-3