Re: DOS Question

From: Jaime Rita (jarita@xxxxxxxxx)
Date: Tue May 28 2002 - 17:35:46 GMT-3

• Next message: Wright, Jeremy: "RE: DOS Question"
• Previous message: Paglia, John (USPC.PCT.Hopewell): "RE: BGP Update-Source issue"
• Maybe in reply to: Wright, Jeremy: "DOS Question"
• Next in thread: Wright, Jeremy: "RE: DOS Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Not sure there's such a thing as a "best" ACL ... some places to start (you
are probably aware of all these but nevertheless)

http://www.cisco.com/warp/public/779/largeent/issues/security/safe.html

http://www.cisco.com/warp/public/707/newsflash.html

http://www.cisco.com/warp/customer/110/32.html

http://www.cisco.com/warp/public/707/22.html

http://www.cisco.com/warp/public/cc/pd/si/11000/prodlit/cswsc_wi.htm

http://www.cisco.com/univercd/cc/td/doc/cisintwk/ics/cs003.htm

http://www.cisco.com/warp/public/707/21.html

At 03:00 PM 5/28/2002 -0500, Wright, Jeremy wrote:
>does anyone have a sample ACL restricting DOS, specifically udp. i have seen
>a lot of variations but i am having trouble narrowing it down to something
>standard and go from there. i obviously want normal internet traffic to stay
>and communicate with our web servers but deny udp dos or scans in general.
>what would be the best acl? tia.
>
>
>
>
>
>
>
>
>
>
>************************
> Jeremy Wright
> Network Analyst
> Archer Daniels Midland
> ja_wright@admworld.com
> (217)451-4063
>
>************************

• Next message: Wright, Jeremy: "RE: DOS Question"
• Previous message: Paglia, John (USPC.PCT.Hopewell): "RE: BGP Update-Source issue"
• Maybe in reply to: Wright, Jeremy: "DOS Question"
• Next in thread: Wright, Jeremy: "RE: DOS Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:59:11 GMT-3