Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
589
Views
0
Helpful
3
Replies

regarding SYN-FIN floods

saimbt
Level 1
Level 1

‎05-14-2005 09:05 AM - edited ‎03-03-2019 09:34 AM

Hi,

One of our routers was detected being vulnerable to SYN-FIN flood attack. Will this be cured by disabling "ip http server" on the router?

-Sai.

Labels:
0 Helpful
3 Replies 3

Tsasbrink
Level 1
Level 1

‎05-15-2005 03:52 AM

not realy as it will activly "fin"the syn.

You should use an accesslist to the management destination to prevent this.

0 Helpful

saimbt
Level 1
Level 1
In response to Tsasbrink

‎05-15-2005 07:39 AM

Hi,

is there any specific ports I should block??

i did not understand ur message.

-Sai.

0 Helpful

Tsasbrink
Level 1
Level 1
In response to saimbt

‎05-17-2005 12:59 AM

yep to the vunrable device you should block evry port witch is not used.

deny ip any

in front of this statement you can put the permits (telnett example) witch are used for management.

permit tcp any eq 23

end the acl by permitting all allowed traffic through.

But it would be highly recommended to use a device / software witch is not vunrable as these filtest do cost performance.

What kind of device are we talking about in what situation ?

0 Helpful
Customers Also Viewed These Support Documents