ip tcp interceot VS ip inspec tcp

From: wsqccie@hotnail.com
Date: Sun Apr 13 2003 - 08:50:55 GMT-3

• Next message: Niksa Tomulic: "RFC 1490, Multiprotocol Interconnect over Frame Relay"
• Previous message: James.Jackson@broadwing.com: "RE: GSR 12012"
• Next in thread: cannonr: "Re: ip tcp interceot VS ip inspec tcp"
• Maybe reply: cannonr: "Re: ip tcp interceot VS ip inspec tcp"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi, group
   IP Tcp intercept and ip inspect tcp both can protect server from syn-flooding attack by a set of timer and threshold value.who can give a detail comparation?
   BTW, a question ask that :Someone is attacking server in area 1, configure R1 to disconnect TCP connection even that live above 2.5 minute.I do below two ways, which is better ?

  A . ip tcp intercept list 101
        ip tcp intercept connection-timeout 150 --------I doubled about the connection-timeout which is no not live 150s
       access-list 101 perit tcp any host x.x.x.x

b. ip inspect tcp time-out 150
       ip inspect name test time-out 150

       int s0------>connet to area 1
       ip inspect test out

        Do I need acl for int s0?

Regards!

• Next message: Niksa Tomulic: "RFC 1490, Multiprotocol Interconnect over Frame Relay"
• Previous message: James.Jackson@broadwing.com: "RE: GSR 12012"
• Next in thread: cannonr: "Re: ip tcp interceot VS ip inspec tcp"
• Maybe reply: cannonr: "Re: ip tcp interceot VS ip inspec tcp"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu May 01 2003 - 13:35:52 GMT-3