Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
451
Views
0
Helpful
2
Replies

Security concern in configuring dynamic Routing protocol on Firewall

yogendra.trivedi
Level 1
Level 1

‎09-18-2007 07:35 PM - edited ‎03-11-2019 04:12 AM

Hi,

I've always read we should not configure dynamic routing protocols on Firewall. Why?

We can control routing updates using route filters and allow what updates should be allowed bet rouer/fw then what is the harm in configuring it.?

Can someone please justify with links to best practices for it from cisco/SANS etc.

reg.

YT

Labels:
0 Helpful
2 Replies 2

Not applicable

‎09-24-2007 03:58 PM

Static routing provides the best security. Because If malicious / incorrect routing updates are injected into the PIX, then that

can affect overall operation of the PIX

0 Helpful

yogendra.trivedi
Level 1
Level 1
In response to

‎09-25-2007 09:20 PM

Agree with your reply and that is waht we have always followed for, But can you point me to some links on cisco/SANS site where this info is documented.

Reg.

YT

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card