From: Roberto Clavero Montano (Roberto.Clavero@TELINDUS.ES)
Date: Thu Aug 21 2008 - 11:48:15 ART
Hi Msnica,
You should stop them before enter customer' network so:
a)Cisco IPS. Too late and if it is not inline, they will say to ASA to shun(stop traffic for an ip)attack to an PIX/ASA devices.
b)Cisco ASA. Why not
c)Cisco IOS Firewall. Perfect, As closer to the source of the attack better.
Cisco Anomaly Guard Module. Perfect one!!
e)Cisco FWSM. Why not.
f)Cisco Traffic Anomaly detector module . Just for detection!!
Rgds,
Roberto
Roberto Clavero Montano
CCNP, CCSP, CCSE, SCSA y WLFES
Seguretat de Xarxes, Telindus,S.A.U.
Parc de Negocis Mas Blau II
Avinguda de les Garrigues n: 38 - 44, planta baixa
Edifici Mar Blau
El Prat de Llobregat - 08820 Barcelona
Mailto:roberto.clavero@telindus.es
T +34 93 303 01 59
F +34 93 307 26 95
Telindus. Change things your way.
http://www.telindus.es
-----Mensaje original-----
De: nobody@groupstudy.com [mailto:nobody@groupstudy.com] En nombre de Monica Belluci
Enviado el: jueves, 21 de agosto de 2008 16:17
Para: Cisco certification; Cisco certification
Asunto: question - Mitigate DDOS attack
Dear Security champs ,
I have one question
You have a customer that is looking to mitigate DDOS attack . Which two of
the following cisco security products
would you recommend to complete requirement
a) Cisco IPS
b)Cisco ASA
c)Cisco IOS Firewall
d)Cisco Anomaly Guard Module
e)Cisco FWSM
f)Cisco Traffic Anomaly detector module .
Which are Two ?
thanks
Monica Bell
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Sep 01 2008 - 08:15:31 ART