Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

871w IOS 12.4T6 - Question on Black Hole and Bogons

Community,

In reading a couple websites while addressing some other issues, I came across an article on Black Hole routing and Bogon lists.

I'm curious if this possible.

ip route 1.0.0.0 255.0.0.0 null0

ip route 2.0.0.0 255.0.0.0 null0

ip route 5.0.0.0 255.0.0.0 null0

ip route 10.0.0.0 255.0.0.0 null0

ip route 14.0.0.0 255.0.0.0 null0

ip route 23.0.0.0 255.0.0.0 null0

ip route 27.0.0.0 255.0.0.0 null0

ip route 31.0.0.0 255.0.0.0 null0

ip route 36.0.0.0 255.0.0.0 null0

...

article: http://www.cymru.com/Documents/secure-ios-template.html

I would also like to add a DROP list for Spam. I think I can do that with an ACL and add it to the out_in ZB policy?

List: http://www.spamhaus.org/drop/drop.lasso

What else can be do for suspected DDos attacks?

Regards,

Chris

  • Firewalling
102
Views
0
Helpful
0
Replies
This widget could not be displayed.