[j-nsp] Stop IP Fragmentation attack
Satish Patel
satish.txt at gmail.com
Mon Apr 25 16:39:44 EDT 2016
In our network we are getting IP Fragmentation attack, so attack use
NTP or Chargen technic and sending very large packet on network which
is filling my network TRUNKs.
How do i stop IP Fragmentation attack on Cisco Edge router? I heard
ACL can do that but don't know what kind of technique it use to stop
fragmentation.
Does following list is enough to stop UDP style attack? Just trying to
understand what are the best practice to handle that attack.
deny udp any any fragments
More information about the juniper-nsp
mailing list