Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Security concern in configuring dynamic Routing protocol on Firewall

Hi,

I've always read we should not configure dynamic routing protocols on Firewall. Why?

We can control routing updates using route filters and allow what updates should be allowed bet rouer/fw then what is the harm in configuring it.?

Can someone please justify with links to best practices for it from cisco/SANS etc.

reg.

YT

2 REPLIES
Anonymous
N/A

Re: Security concern in configuring dynamic Routing protocol on

Static routing provides the best security. Because If malicious / incorrect routing updates are injected into the PIX, then that

can affect overall operation of the PIX

New Member

Re: Security concern in configuring dynamic Routing protocol on

Agree with your reply and that is waht we have always followed for, But can you point me to some links on cisco/SANS site where this info is documented.

Reg.

YT

217
Views
0
Helpful
2
Replies
CreatePlease login to create content