07-22-2005 07:50 AM - edited 03-09-2019 11:55 AM
I just came across this MS announcement re a DOS vulnerability with RDP. If we have 3389 open for RDP are there any other precautions I can take on my PIX to limit the exposure to this? For instance adding some limitations on the end of my static translation or will the PIX be able to recognize a DOS attack via port 3389 with the default IDS running on it?
Microsoft Security Advisory (904797)
07-28-2005 08:46 AM
The TCP intercept feature implements software to protect TCP servers from TCP SYN-flooding attacks, which are a type of denial-of-service attack. The TCP intercept feature helps prevent SYN-flooding attacks by intercepting and validating TCP connection requests.
07-30-2005 05:41 AM
Right on, thank you. Forgot that we can limit this on a static translation so our server won't take a pounding.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide