Attacking on Source Port 0 (ZERO)

Dobbins, Roland rdobbins at arbor.net
Mon Oct 15 02:02:49 UTC 2012


On Oct 15, 2012, at 2:59 AM, Shahab Vahabzadeh wrote:

> I think it act like a warm or some attacks which cause high CPU load in some IOS.

i.e., a DDoS attack.

You should configure iACLs at your edge so that random sources on the Internet can't packet your routers.  Hopefully, you have hardware-based edge devices, not just software-based devices and (awful) stateful firewalls - the days of software-based devices on the Internet were over years ago.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton




More information about the NANOG mailing list