Re: Cisco IOS Vulnerability

[Jeff Kell]

The workaround for transit suggests permitting only tcp, udp, icmp, gre, 
 esp, and ah protocols.  Is this sufficient to protect the router 
itself, or do you have to get hard-nosed with specific ACLs (restricting 
access to all your possible interface addresses)?

Jeff