[c-nsp] IKEv2 unknown connections
Dobbins, Roland
Roland.Dobbins at netscout.com
Thu Jan 3 07:50:38 EST 2019
On 3 Jan 2019, at 16:58, Robert Hass wrote:
> How I can check which IP is trying constantly connect via IKEv2 to my
> router ?
Use flow telemetry to look for incoming traffic directed to your router
on UDP/4500?
You could also use a classification ACL. Or if your circumstances
permit, just use an iACL to deny this traffic from all but designated
IPs.
--------------------------------------------
Roland Dobbins <roland.dobbins at netscout.com>
More information about the cisco-nsp
mailing list