topic Re: Security concern in configuring dynamic Routing protocol on in Network Security https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883609#M974919 <HTML><HEAD></HEAD><BODY><P>Static routing provides the best security. Because If malicious / incorrect routing updates are injected into the PIX, then that </P><P>can affect overall operation of the PIX</P></BODY></HTML> Mon, 24 Sep 2007 22:58:59 GMT 2007-09-24T22:58:59Z Security concern in configuring dynamic Routing protocol on Firewall https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883608#M974916 <P>Hi,</P><P>I've always read we should not configure dynamic routing protocols on Firewall. Why?</P><P>We can control routing updates using route filters and allow what updates should be allowed bet rouer/fw then what is the harm in configuring it.?</P><P>Can someone please justify with links to best practices for it from cisco/SANS etc.</P><P>reg.</P><P>YT</P><P></P> Mon, 11 Mar 2019 11:12:59 GMT https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883608#M974916 yogendra.trivedi 2019-03-11T11:12:59Z Re: Security concern in configuring dynamic Routing protocol on https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883609#M974919 <HTML><HEAD></HEAD><BODY><P>Static routing provides the best security. Because If malicious / incorrect routing updates are injected into the PIX, then that </P><P>can affect overall operation of the PIX</P></BODY></HTML> Mon, 24 Sep 2007 22:58:59 GMT https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883609#M974919 2007-09-24T22:58:59Z Re: Security concern in configuring dynamic Routing protocol on https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883610#M974921 <HTML><HEAD></HEAD><BODY><P>Agree with your reply and that is waht we have always followed for, But can you point me to some links on cisco/SANS site where this info is documented.</P><P>Reg.</P><P>YT</P><P></P></BODY></HTML> Wed, 26 Sep 2007 04:20:24 GMT https://community.cisco.com/t5/network-security/security-concern-in-configuring-dynamic-routing-protocol-on/m-p/883610#M974921 yogendra.trivedi 2007-09-26T04:20:24Z