Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
758
Views
5
Helpful
2
Replies

blocking packet with ttl 1 or 0 on 6509

athambi
Level 1
Level 1

‎06-23-2010 02:45 AM - edited ‎03-06-2019 11:42 AM

I am using a cisco  609 with  sup 720 and PFC3 card .I was wondering if there is way to  block the packet that  hits the  6509 with ttl1 vlaue of 1 or 0 .

Ajai

Labels:
0 Helpful
2 Replies 2

francisco_1
Level 7
Level 7

‎06-23-2010 03:14 AM

You could use TTL filtering in ACLs to filter packets with specific TTL value to protect the local device and downstream from TTL expiry attack

Or on the 6500 you could use hardware-based rate limiters to protect the local device from TTL expiry attacks.

Flexible packet matching can be used to filter on specific fields within the IP packet hearders including TTL value.

Francisco

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card