Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Disable TCP Intercept

I have been wondering about if TCP intercetp should be disabled or not, according to the "Secure IOS template" at http://www.cymru.com/Documents/secure-ios-template.html he says it is best to leave it disabled in general and especially with blackhole routing.

I am trying to find some general industry best practices regarding tcp intercept in enterprise networks. Not sure if it should be disabled or not.

1 REPLY
Silver

Re: Disable TCP Intercept

By default, TCP intercept is not enabled on the router. This has to be enabled manually by the administrator. Wheather to enable it or not, it depends on your network configuration and the amount of security you would like to implement. If you would expect any of your servers would come under the TCP SYN attack, then you must enable TCP intercept.

189
Views
0
Helpful
1
Replies
CreatePlease login to create content