•
•
•How
to prevent being a “bounce site” in a “Smurf”
or “Fraggle” attack:
Turn off directed broadcasts to
networks:
Cisco: Interface command “no ip
directed-broadcast”
Proteon: IP protocol configuration “disable
directed-broadcast”
Bay
Networks: Set a false static ARP
address for bcast address
Use access control lists (if necessary)
to prevent
ICMP echo requests from entering your network
Encourage vendors to turn off replies for
ICMP echos
to broadcast addresses
•