Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,Is there any way to filter IPv6 routing updates ? I would like to prevent a router to propagate a default route further.The distribute-list command seems to be only for redistribution when filtering outgoing update. Francois
We have a wireless design working with Aironet and VPNs 3000. We would like to migrate to an airspace solution. My questions are: a) is possible to do at the same time "VPN Passthrough" and web authentication (Internal or external) on the same WLAN ?...
Hi, We have 2 VPN 3000 configured for load-balancing. The clustering is made on the public interface (wifi net) with a virtual address. We use the External interface for the access from Internet. We use RRI to inject the route the private side (throu...
Hi,I would to protect my network against ping of death attack. The IOS IDS allow the detection of this kind of traffic, but does it drop the ICMP packet ? If I don't have any IOS FW feature set, what are my options to protect my router, is this ACL e...
Hi, I installed a NM-CIDS-K9 Module into my 2821 router running 12.4.8 (C2800NM-ADVSECURITYK9-M). My IDS module is running 5.0(2)S152.0. The issue I have is that the Interface IDS-Sensor 1/0 of my router is going up and down every 10 seconds. I confi...
Hi,It seems to be a IOS issue when running 12.4.3a on the 2821. I tried exactly the same configuration with a 2600 running 12.2.15T and all was fine. Do you know if we have to add some "new" options with version 12.4 ? I didn't found any bugs in the ...
Hi,CAR is also a nice alternative to solve this issue. Could somebody confirm me that the IOS IDS is also able to prevent such attach by "dropping" ICMP Ping of Death packets ?ThanksFrancois
Hi,We cannot set at the same time IPsec and L2TP over IPsec for a group, we can select IPSec and L2TP but L2TP is not enough secure without IPsec... Any idea ?
Thanks a lot for your helpful comments, it seems that we are running with this bug. We will then upgrade our switch to the latest release.RegardsFrancois
