interestingly, there was a short thread on NANOG about increased instances
of script kiddie behaviour now that the college kids are back in the dorms.
Just tonight there were a couple of posts about a big probe coming into
someone's network, and originating from three particular blocks in Taiwan.
get your NBAR up and running!!!!!
Chuck
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Tony Medeiros
Sent: Sunday, September 09, 2001 3:13 PM
To: [EMAIL PROTECTED]
Subject: Re: Easyip & cable modem [7:19187]
Now you need to setup a fat access-list or CBAC for some security from all
the idiots on your cable subnet. You wouldn't believe the probes I get
every day!! This will be a little challanging for you cus of your dynamic
address. Of course, since your router will be up all the time, chances are
you will keep renewing the same IP. Let me know if you need some help on
that. Better do it soon cus NAT won't protect you much, and you definitely
need protecting. I run IDS on my router and log all the probes and @!#$
heads spoffing internal address and stuff. And believe me, that log gets
pretty large especially when school is out !!
Take care
Tony
----- Original Message -----
From: "Bob Lepine"
To:
Sent: Sunday, September 09, 2001 10:39 AM
Subject: Easyip & cable modem [7:19187]
> Woohoo. I got it working. I have my 2600 hooked up to my cable modem of
> which I am a DHCP client. Thanks to the group for helping me figure this
one
> out! (Especially Tony Medieros and Leigh Anne Chisholm) I have now hooked
> the router up to my 2900 switch and have access to the net with all my
> computer. This will greatly enhance my studies. I am listing the
> configuration for those who need to do the same.
> Names have been altered to protect the innocent!
> Current configuration : 997 bytes
> !
> version 12.1
> no service single-slot-reload-enable
> service timestamps debug uptime
> service timestamps log uptime
> service password-encryption
> !
> hostname BobRouter
> !
> logging rate-limit console 10 except errors
> enable password 7 045907031F23404B13
> !
> ip subnet-zero
> !
> !
> no ip finger
> ip host laptop 192.168.0.3
> ip name-server 24.229.12.230
> ip name-server 204.186.0.201
> ip name-server 204.186.0.203
> !
> !
> !
> !
> interface Ethernet0/0
> ip address dhcp
> ip nat outside
> half-duplex
> !
> interface Serial0/0
> no ip address
> shutdown
> !
> interface BRI0/0
> no ip address
> shutdown
> !
> interface Ethernet0/1
> ip address 192.168.0.6 255.255.255.0
> ip nat inside
> half-duplex
> !
> ip default-gateway 10.227.49.1
> ip nat inside source list 10 interface Ethernet0/0 overload
> ip classless
> ip route 0.0.0.0 0.0.0.0 10.227.49.1
> no ip http server
> !
> access-list 10 permit 192.168.0.0 0.0.255.255
> no cdp run
> !
> line con 0
> transport input none
> line aux 0
> line vty 0 4
> password 7 05090A0A314E420C03
> login
> !
> no scheduler allocate
> end
>
> --
> Bob Lepine
> MCSE,MCDBA,CNA,CCNA,MCT
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=19226&t=19187
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
