OT: CCIE Security Practice Labs - Lab7

From: Vazman@aol.com
Date: Wed Sep 01 2004 - 21:28:23 GMT-3

• Next message: ccie2be: "Re: Using NBAR to drop traffic"
• Previous message: Jonathan R. Charles: "RE: SBC Pre-Sales Engineering Position Open - Northern Virginia"
• Next in thread: Vazman@aol.com: "Re: OT: CCIE Security Practice Labs - Lab7"
• Maybe reply: Vazman@aol.com: "Re: OT: CCIE Security Practice Labs - Lab7"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello group,

This is from Yusuf's CCIE Security Practice Labs #7

R2 has one ethernet and one serial interface.

R2 has experienced TCP based DoS attacks in the past to a server on the ethernet segment. Configure R2 to prevent this attack. Do not use CAR.

The solution is given below. I am not sure why we need the first line. Any thoughts? Thanks.

access-list 199 permit tcp any any eq domain established
access-list 199 deny tcp any any eq domain syn
access-list 199 permit ip any any

int s0
ip access-group 199 in

• Next message: ccie2be: "Re: Using NBAR to drop traffic"
• Previous message: Jonathan R. Charles: "RE: SBC Pre-Sales Engineering Position Open - Northern Virginia"
• Next in thread: Vazman@aol.com: "Re: OT: CCIE Security Practice Labs - Lab7"
• Maybe reply: Vazman@aol.com: "Re: OT: CCIE Security Practice Labs - Lab7"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Oct 01 2004 - 15:00:35 GMT-3