Can you identify the type of DOS. What IOS is he running? If this is a known bug is there a cisco bug track ID on it? Thanks Drew -----Original Message----- From: Sean Young [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 28, 2001 2:57 PM To: [EMAIL PROTECTED] Subject: Hi everyone, I have a story that wish to share with everyone. One of my friends works for a company that uses Cisco PIX as the firewall. This afternoon, he called and told me that the company firewall is experiencing a Denial of Service (DOS) attack. The attack is so heavy that the PIX is just simply gives up. The company contacts Cisco and the TAC told my friend that there is a bug in the Cisco PIX code and he will have to wait a few days for the new code to arrive. Frustrated, he decides to use his workstation which is running NetBSD, put in an extra NIC, shutoff all essential services but SSH and netfilter. Amazingly, the new BSD firewall withstand the DOS and connectivity is restored. The point of the story. Not everything from Cisco is good. Their code is just buggy as everyone else. Just because it carries the name Cisco doesn't mean it is safe. _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com _________________________________ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _________________________________ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]