Edge(config)#access-list 151 deny tcp any any
eq 16660 log
Denies any TCP traf?¬?c
from any network from
going to any network
through port 16660, and
logs any instance in which
this statement was used
Edge(config)#access-list 151 deny tcp any any
eq 65000 log
Denies any TCP traf?¬?c
from any network from
going to any network
through port 65000, and
logs any instance in which
this statement was used
NOTE: The ports
listed above are the
default ports for the
Stacheldraht tool.
Use these ports for
orientation and example
only, because the port
numbers can easily be
changed.
Edge(config)#access-list 151 permit ip any any Allows all other traf?¬?c
through
Edge(config)#interface fastethernet 0/0 Moves to interface
con?¬?guration mode
Edge(config-if)#ip access-group 151 in Takes all access list lines
that are de?¬?ned as being
part of group 151 and
applies them in an
inbound manner
Edge(config-if)#exit Returns to global
con?¬?guration mode
Edge(config)#interface fastethernet 0/1 Moves to interface
con?¬?guration mode
Mitigating Dedicated DoS Attacks with ACLs 117
NOTE: If your port numbers change, and they can change, defending against this
attack is rather challenging and means constant monitoring of the network.
Pages:
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111