In our network we are getting IP Fragmentation attack, so attack use NTP or Chargen technic and sending very large packet on network which is filling my network TRUNKs.
How do i stop IP Fragmentation attack on Cisco Edge router? I heard ACL can do that but don't know what kind of technique it use to stop fragmentation. Does following list is enough to stop UDP style attack? Just trying to understand what are the best practice to handle that attack. deny udp any any fragments _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp