Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
311
Views
0
Helpful
2
Replies

Catalyst C3500XL - Interface Blocked Security Advisory

dennis
Level 1
Level 1

‎07-29-2003 03:17 PM - edited ‎03-02-2019 09:13 AM

The C3500XL do run IOS but are they vulnerable to the DOS attack outlined in the Cisco July 18 Security Advisory?

If so I guees the only solution is to upgrade the IOS as they do not support ACL's as required for the work around.

Labels:
0 Helpful
2 Replies 2

Prashanth Krishnappa
Cisco Employee
Cisco Employee

‎07-29-2003 03:27 PM

Yes..XLs are vulnerable. The management interface could get wedged causing to loose IP connectivity to the switch.

0 Helpful

milan.kulik
Level 10
Level 10
In response to Prashanth Krishnappa

‎07-29-2003 11:19 PM

Wouldn't be enough to configure

access-list 101 permit tcp any any

access-list 101 permit udp any any

access-list 101 deny 53 any any

access-list 101 deny 55 any any

access-list 101 deny 77 any any

access-list 101 deny 103 any any

access-list 101 permit ip any any

interface VLANx

ip access-group 101 in

while using int VLANx as the management interface?

I've just done it on my C3548-XL running IOS 12.0(5)WC5a.

Regards,

Milan

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents