Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
536
Views
0
Helpful
1
Replies

how to deny p2p apps with an INLINE

Go to solution
darin.marais
Level 4
Level 4

‎07-27-2006 10:43 PM - edited ‎03-10-2019 03:08 AM

With an INLINE solution, what is the best way to deny p2p connections from source IP addresses? There are several choices.

deny-attacker-inline - do not transmit this packet and future packets from the attacker address for a specified period of time.

deny-connection-inline - do not transmit this packet and future packets on the TCP Flow.

deny-packet-inline - do not transmit this packet

deny-attacker-victim-pair-inline - do not transmit this packet and future packets on the attacker/victim address pair for a specified period of time.

deny-attacker-service-pair-inline - do not transmit this packet and future packets on the attacker address victim port pair for a specified period of time.

We would like to deny the connection for the p2p application but not deny the source altogether.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jlimbo
Level 1
Level 1

‎07-27-2006 11:13 PM

If the Signature is using a TCP based engine then I would use deny-connection-inline. If the Signature uses something like UDP then it would be best to use deny-packet-inline.

Hope that helps,

Jonathan

View solution in original post

0 Helpful
1 Reply 1

Go to solution
jlimbo
Level 1
Level 1

‎07-27-2006 11:13 PM

If the Signature is using a TCP based engine then I would use deny-connection-inline. If the Signature uses something like UDP then it would be best to use deny-packet-inline.

Hope that helps,

Jonathan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card