[42552] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: What Worked - What Didn't

daemon@ATHENA.MIT.EDU (Martin Cooper)
Mon Sep 17 18:32:19 2001

From: Martin Cooper <mjc@cooper.org.uk>
To: nanog@nanog.org
Message-Id: <E15j6vG-0005hx-00@nmg2.csi.cam.ac.uk>
Date: Mon, 17 Sep 2001 23:31:26 +0100
Errors-To: owner-nanog-outgoing@merit.edu

Alex Bligh <alex@alex.org.uk> writes:

> --On Monday, 17 September, 2001 2:32 PM -0400 "Patrick W. Gilmore"
> <patrick@ianai.net> wrote:
> 
> > Maybe I missed something?
> 
> Only all the well documented attacks (including DoS).
> Think about sending RST to BGP port (and other random
> ports) on your routers.

I thought TCP stacks were supposed to do sequence number checking on
RST's to make sure they fell within the bounds of the unacknowledged
portion of the current window? Or is Cisco's implementation broken?

M.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[42552] in North American Network Operators' Group

Re: What Worked - What Didn't

daemon@ATHENA.MIT.EDU (Martin Cooper)Mon Sep 17 18:32:19 2001

daemon@ATHENA.MIT.EDU (Martin Cooper)
Mon Sep 17 18:32:19 2001