[4645] in North American Network Operators' Group
Re: New Denial of Service Attack on Panix
daemon@ATHENA.MIT.EDU (Mr. Jeremy Hall)
Sat Sep 21 20:11:48 1996
From: "Mr. Jeremy Hall" <jhall@rex.isdn.net>
To: avg@quake.net (Vadim Antonov)
Date: Sat, 21 Sep 1996 19:05:55 -0500 (CDT)
Cc: michael@memra.com, nanog@merit.edu, iepg@iepg.org
In-Reply-To: <199609211932.MAA00678@quest.quake.net> from "Vadim Antonov" at Sep 21, 96 12:32:45 pm
-->modifications to configurations). Having only 100 filter
-->lists per cisco box doesn't help too much, too (there are
-->boxes with more than 100 "logical" interfaces on MIP cards).
-->For a large ISP, implementing source filtering is going to
-->be a monumental task.
I don't doubt it will be a large task. With IOS 11.2, you have the option
of using named access lists. THese can be used in packet filters as well
as routing announcements. In the future, Cisco plans to alow the ability
to edit an access list rather than having to retype the whole thing. This
removes the limit of 100 access lists.
--
-------------------------------------------
| Jeremy Hall Network Engineer |
| ISDN-Net, Inc Office +1-615-371-1625 |
| Nashville, TN and the southeast USA |
| jhall@isdn.net Pager +1-615-702-0750 |
-------------------------------------------
