Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1072
Views
0
Helpful
2
Replies

OS Fingerprint

alatzas
Level 1
Level 1

‎05-05-2006 09:09 AM - edited ‎03-09-2019 02:49 PM

Is there a clear cut way to block applications (such as nmap) from performing a fingerprint and determining the device is a cisco router/switch?

Pete

Labels:
0 Helpful
2 Replies 2

Patrick Iseli
Level 7
Level 7

‎05-06-2006 08:38 AM

No, you cannot change that behavior because the nmap OS Fingerprint is based on TCP/IP stack characteristics how the devices responds and this is not configurable in a Cisco device.

The only way would be to place an IPS that would block the attckers source or the responses. But remember that blocking (Shunning) is quiet dangerous because it is also easy to forge the source IP.

sincerely

Patrick

0 Helpful

alatzas
Level 1
Level 1
In response to Patrick Iseli

‎05-08-2006 05:02 AM

Thanks... I wasnt sure if i could block certain things that NMAP looks for but i guess not.

Pete

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents