Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

blocking packet with ttl 1 or 0 on 6509

I am using a cisco  609 with  sup 720 and PFC3 card .I was wondering if there is way to  block the packet that  hits the  6509 with ttl1 vlaue of 1 or 0 .

Ajai

2 REPLIES

Re: blocking packet with ttl 1 or 0 on 6509

You could use TTL filtering in ACLs to filter packets with specific TTL value to protect the local device and downstream from TTL expiry attack

Or on the 6500 you could use hardware-based rate limiters to protect the local device from TTL expiry attacks.

Flexible packet matching can be used to filter on specific fields within the IP packet hearders including TTL value.

Francisco

439
Views
5
Helpful
2
Replies
CreatePlease login to create content