nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cisco IOS Vulnerability

From: Jeff Kell <jeff-kell () utc edu>
Date: Thu, 17 Jul 2003 02:13:18 -0400
The workaround for transit suggests permitting only tcp, udp, icmp, gre, esp, and ah protocols. Is this sufficient to protect the router itself, or do you have to get hard-nosed with specific ACLs (restricting access to all your possible interface addresses)? 

Jeff
Previous By Date Next
Previous By Thread Next

Current thread: