[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Attacking on Source Port 0 (ZERO)

On Oct 15, 2012, at 2:59 AM, Shahab Vahabzadeh wrote:

> I think it act like a warm or some attacks which cause high CPU load in some IOS.

i.e., a DDoS attack.

You should configure iACLs at your edge so that random sources on the Internet can't packet your routers.  Hopefully, you have hardware-based edge devices, not just software-based devices and (awful) stateful firewalls - the days of software-based devices on the Internet were over years ago.

Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton