[j-nsp] Block port 0 traffic
Wei Keong
chooweikeong at pacific.net.sg
Wed Oct 13 06:53:19 EDT 2004
Hi,
We observe quite a bit of traffic surge, from src port 0 to dst port 0.
We tried to use the filter below, but the traffic is still able to pass
through. Has anyone seeing the same attack lately? Is there a bug in Junos
5.6?
term deny-port-zero {
from {
protocol [ tcp udp ];
source-port 0;
destination-port 0;
}
then {
count deny-port-zero;
sample;
discard;
}
}
Thanks,
Wei Keong
More information about the juniper-nsp
mailing list