Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
550
Views
0
Helpful
1
Replies

Access-list blocking W32/SQL Slammer

pallette
Level 1
Level 1

‎01-25-2003 05:45 PM - edited ‎02-20-2020 09:20 PM

In case anyone else has been hit by this worm.

It looks like if you block port 1434 it will stop the worm from spreading or infecting the network. Of course, make sure you have no enterprise apps utilizing this standard sql monitoring port 1433 and 1434.

access-list 110 deny udp any any eq 1434

access-list 110 permit ip any any

then apply to the necessary interfaces

ip access-group 110 in

ip access-group 110 out

Labels:
0 Helpful
1 Reply 1

albadger
Level 1
Level 1

‎01-25-2003 07:19 PM

Pls also see Cisco's response to the worm.... http://www.cisco.com/warp/public/707/newsflash.html

0 Helpful
Customers Also Viewed These Support Documents