Craig A. Huegen
<chuegen@cisco.com>
Smurf Attack Description &
Supression
NANOG 11 10
Prevention Techniques
•Technical
help tips for Cisco routers:
BugID
CSCdj35407 - “fast drop” ACL code
This bug fix
optimizes the way that packets denied by an ACL are dropped within IOS, reducing CPU utilization for large
amounts of denied traffic.
First major
release of integration is 11.1(14)CA
Not
available in 11.2 yet, but coming
BugID
CSCdj35856 - ACL logging throttles
This bug fix
places a throttle in IOS which will allow a user to specify the rate at which logging will take place of packets
which match a condition in an ACL
where “log” or “log-input” is specified.
First
maintenance release of integration is 11.1(14.1)CA
Not
available in 11.2 yet, but coming