Hi
Nexus 7010 with N7K-SUP1 running NXOS 6.2(16).
High CPU occasionally peaking above 90%.
Log filling up with following messages:
%USER-3-SYSTEM_MSG: NTP Receive dropping message: Received NTP control mode packet. Drop count:152 - ntpd
%USER-3-SYSTEM_MSG: NTP Receive dropping message: Received NTP private mode packet. Drop Count:153 - ntpd
These message appear because there is a vulnerability in Network Time Protocol (NTP) package of Cisco NX-OS Software.
Two questions:
Does this mean that there is a Distributed denial-of-service (DDoS) attack on customer network?
Apart from disabling NTP on the device via the "no feature ntp" command’ what steps should customer take to establish whether their network is under attack?
NXOS 6.2(16) is not listed as having this defect and it is still available to download.
Thanks