Hello,
I am seeing a large increase in TCP NULL packets over our network. I
am looking for suggestions on effective ways to block this traffic.
I have considered ACL'ing something like this:
ip access-list extended test
deny tcp any any match-all -ack -fin -psh -rst -syn -urg
permit ip any any
What other methods might be more effective?
thanks,
jim
_______________________________________________
cisco-nsp mailing list [email protected]
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
