Heres some pix and router security tips..
http://www.cisco.com/warp/public/cc/pd/rt/2600/prodlit/flrrr_ov.htm
Brian "Sonic" Whalen
Success = Preparation + Opportunity
On Thu, 6 Sep 2001, Stephane LITKOWSKI wrote:
> Yes, it's vendor dependant.
>
> TCP protocol doesn't specify any connection timeout.
> A TCP connection can be alive forever.
>
> So the application (client or server side) must manage timeout, if needed
> and send a TCP reset.
>
> ""Phil Barker"" a icrit dans le message news:
> [EMAIL PROTECTED]
> > I thought that would grab your attention Priscilla
> > hehehe.
> >
> > I need to grant Terminal Service Access from anyone
> > (internet) to a well known TCP port of a destination
> > IP Server address x.x.x.x
> >
> > This is implemented as a permit on the PIX F/W.
> >
> > My problem is that I can telnet that well known port
> > and the Server generates an Error Message "Error :
> > Must Authenticate first."
> >
> > Obviously, I am open to a denial of service attack.
> >
> > I am attempting to rectify the Server Message issue by
> > displaying a blank screen for this instance.
> >
> > However, my real question is : When I telnet the well
> > known port, I can see the 3-WAY-HANDSHAKE with my
> > Sniffer. How long will the connection be established
> > for ? My gut feeling is that this will be vendor
> > dependant as either side can Reset or Tear down the
> > TCP connection, but a rough idea would do.
> >
> > Phil.
> >
> >
> >
> > ____________________________________________________________
> > Do You Yahoo!?
> > Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk
> > or your free @yahoo.ie address at http://mail.yahoo.ie
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=19085&t=18794
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
