[nsp] hardware
Jon Lewis
jlewis at lewis.org
Sat Jul 3 18:39:52 EDT 2004
On Sat, 3 Jul 2004, Stephen J. Wilcox wrote:
> You're not going to be handle anything other than small DoS attacks,
For me, SQL Slammer was the wakeup call for the need for per-port
rate-limiting of customers. All it took was one infected customer to
render an entire 2924xl and the FE port on the router it connected to
pretty much useless. Rate limiting / policing switches won't protect you
from external attacks, but they can limit/contain the damage caused by
infected hosts on your network.
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
More information about the cisco-nsp
mailing list