Handling DDOS attacks

Unanswered Question
Nov 7th, 2008

How do you suggest mitigating DDoS attacks with regular 2800/3700 series routers?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jon Marshall Fri, 11/07/2008 - 15:05


In addition to access-lists used to control access to the vty lines/snmp/ntp etc. you can also have a look at COPP - Control Plane Policing - see this attached link for details on how it works -


One other point, i have never implemented COPP so can't say how well it performs or more importantly what extra resources it places on the router.


johnlloyd_13 Sun, 11/09/2008 - 20:19

you may enable the IOS IPS feature on these routers and download the latest signature file from cisco's website. depending how big your network and applications you're using, it may eat up the router's cpu and memory. this feature may be used as an interim while you plan to purchase a dedicated appliance for security.


This Discussion