[j-nsp] Block traceroute and Allow Ping

Stefan Fouant sfouant at gmail.com
Wed Sep 30 08:25:32 EDT 2009

On Wed, Sep 30, 2009 at 5:09 AM, Masood Shah <masoodshah at juniper.net> wrote:

> If you are REALLY paranoid, you can DROP all UDP traffic and then only open
> the ports that you have services running on. Sometimes this is easier said
> than done though.

I wouldn't call this paranoia.  I would call this "good security posture".

Stefan Fouant

More information about the juniper-nsp mailing list