06-23-2010 02:45 AM - edited 03-06-2019 11:42 AM
I am using a cisco 609 with sup 720 and PFC3 card .I was wondering if there is way to block the packet that hits the 6509 with ttl1 vlaue of 1 or 0 .
Ajai
06-23-2010 03:14 AM
You could use TTL filtering in ACLs to filter packets with specific TTL value to protect the local device and downstream from TTL expiry attack
Or on the 6500 you could use hardware-based rate limiters to protect the local device from TTL expiry attacks.
Flexible packet matching can be used to filter on specific fields within the IP packet hearders including TTL value.
Francisco
06-23-2010 03:23 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide