I have a 2621 router with FW software on it. What is the best IDS implimintation/practice to have router drop all incomming SYN's DDoS SYN Floods attacks. I dont want the route only to look at access-list ip and block them. Thank you
To prevent SYN flood attacks, your best bet is to use "TCP Intercept", in which the router intercepts all SYN packets and responds for the server, and only if the 3-way handshake is completed does it then complete the connection with the internal server.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...