Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
434
Views
0
Helpful
1
Replies

How to detect DoS attacks on IOS Firewall

pambosch
Level 1
Level 1

‎09-11-2002 12:42 PM - edited ‎03-09-2019 12:16 AM

We have several remote sites having a 2610 router with IOS Firewall software implemented. Sometimes the internet connection on these sites gets really slow, and also the VPN traffic coming from the remote sites to the central one is delayed A LOT. I am wondering if I\m under DoS attack some times, but I don;t know how to detect this attack. What command should I use on the router to verify if I am under attack?

Thanks

Labels:
0 Helpful
1 Reply 1

rgrcommo
Level 1
Level 1

‎09-11-2002 10:06 PM

You just need some access-lists and some rate limits set on your interfaces.

you can use IDS but consider the memory usage and performance impact on the routers along with signature coverage and signature updates..

I would just add some access-lists and do the rate-limit on the int's needed.

Here is a good link to help you out.

http://www.cisco.com/warp/public/707/newsflash.html

-jambrose

0 Helpful
Customers Also Viewed These Support Documents