DOS?
Rob Thomas
robt at cymru.com
Sat Jan 25 15:37:19 UTC 2003
Hi, NANOGers.
] access-list 150 deny udp any any eq 1434 log-input
Be _very_ careful about enabling such logging. Some of the worm flows
have filled GigE pipes. I doubt you really want to log that; Netflow
is a better option in this case. Too much logging will raise the CPU
utilization to the point of creating a DoS on the router.
Thanks,
Rob.
--
Rob Thomas
http://www.cymru.com
ASSERT(coffee != empty);
More information about the NANOG
mailing list