Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
1
Replies

Effective way of monitoring uRPF violations

cmdathp2010
Level 1
Level 1

‎11-24-2013 07:50 PM - edited ‎03-07-2019 04:45 PM

From

http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfrpf.html#wp1001215

There is seems to be no effective direct method for monitoring uRPF violations. 

The only indrect method seems to be having a "deny ip any any log" ACL and attach to the uRPF configuration.  However this is a bit risky if someone is flooding the system with uRPF failed packets.

Does any one have more effective way for it?  Thanks.

Labels:
0 Helpful
1 Reply 1

daniel.dib
Level 7
Level 7

‎11-24-2013 10:16 PM

Check if you have SNMP support for it.

http://www.cisco.com/en/US/docs/ios-xml/ios/sec_data_urpf/configuration/12-4t/sec-urpf-mib.pdf

Daniel Dib
CCIE #37149

Daniel Dib
CCIE #37149
CCDE #20160011

Please rate helpful posts.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card