Network Security: Detailed info on Re: Router config question

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Firewalls

[Top] [All Lists]

Re: Router config question

from [richardw] Network Security

[Permanent Link]

Subject:	Re: Router config question
Date:	Mon, 08 Nov 2004 15:41:33 -0600

It was a work around until Cisco fixed the code. I would keep them in there - how many times have we thought that we fixed something and then...

Dan Tesch wrote:

Hello, I inherited a Cisco 2611 that I have been trying to
clean up and understand the config on.

For a while I have been wondering why the following
were being specifically blocked...

access-list 110 deny   53 any any
access-list 110 deny   55 any any
access-list 110 deny   77 any any
access-list 110 deny   pim any any

I was doing some reading trying to learn about PIM
and found this link which references a DOS vuln.

http://securecomputing.stanford.edu/alerts/cisco-update-17jul2003.html

Was this a way to circumvent the listed vuln.?  the doc references IOS
below 12.3, as I am now above that - may I safely remove these denys?

Thanks

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Router config question, Dan Tesch Re: Router config question, richardw <= Re: Router config question, Shane B. Milburn RE: Router config question, James Williams RE: Router config question, Dennis Dimka Re: Router config question, richardw RE: Router config question, Eric McCarty RE: Router config question, Chad Re: Router config question, richardw Re: Router config question, pramod RE: Router config question, David Gillett RE: Router config question, Chris Morse

Previous by Date:	RE: Router config question, Dennis Dimka
Next by Date:	Re: Router config question, Shane B. Milburn
Previous by Thread:	Router config question, Dan Tesch
Next by Thread:	Re: Router config question, Shane B. Milburn
Indexes:	[Date] [Thread] [Top] [All Lists]