[157304] in North American Network Operators' Group
Re: Attacking on Source Port 0 (ZERO)
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Sun Oct 14 22:03:16 2012
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: NANOG list <nanog@nanog.org>
Date: Mon, 15 Oct 2012 02:02:49 +0000
In-Reply-To: <CAGqGmqZEaFpSvFUHYW2qy1SDS7oFnGqnHQ8WtYeQrDgdxonLQA@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Oct 15, 2012, at 2:59 AM, Shahab Vahabzadeh wrote:
> I think it act like a warm or some attacks which cause high CPU load in s=
ome IOS.
i.e., a DDoS attack.
You should configure iACLs at your edge so that random sources on the Inter=
net can't packet your routers. Hopefully, you have hardware-based edge dev=
ices, not just software-based devices and (awful) stateful firewalls - the =
days of software-based devices on the Internet were over years ago.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
