Can someone give me the syntax for cisco ACL's to stop
spoofing ? Cisco mentions this:
access-list number deny icmp any any redirect
access-list number deny ip 127.0.0.0 0.255.255.255 any
access-list number deny ip 224.0.0.0 31.255.255.255
any
access-list number deny ip host 0.0.0.0 any
But what I am seeking to do is not allow someone
on the outside to spoof one of my inside IP's from
the internet. I have a number of class C's on "my
side" of the router. I assume the above ACL just
denies
icmp redirects and private address spaces; would I
also use that list.
James
__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
