You need to block more than just your own subnet. You'll want to block at least the RFC1918 address spaces and hosts that claim to be from 0.0.0.0, 255.255.255.255, 127.x.x.x and multicast addresses. You can take a look at the following for more info:
http://www.cisco.com/univercd/cc/td/doc/cisintwk/ics/cs003.htm http://www.cisco.com/warp/public/779/largeent/issues/security/safe.html http://www.cisco.com/warp/public/707/21.html http://www.phrack.org/phrack/55/P55-10 HTH, Kent -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Postman Pat Sent: Tuesday, May 28, 2002 1:35 AM To: [EMAIL PROTECTED] Subject: Anti-spoofing [7:45217] Greetings, Please help me, I am trying to configure anti-spoofing on a router: Interface eth 0 Ip address 192.168.1.1 255.255.255.0 Interface ser 0 ip address 10.0.0.1 255.255.255.0 access-list 10 deny 192.168.1.0 0.0.0.255 access-class 10 in Is my understanding of setting up anti-spoofing correct? Is there anything I need to change to get this working? How do I improve the security on this config? Regards LK Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45287&t=45217 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
