Hi.. Got this message from techrepublic... Thought It might be useful Surprising thing is IOS as Input/output supervisor ??? What is he talking off ? Murali
TechRepublic: www.techrepublic.com Presents your INTERNET SECURITY FOCUS TECHMAIL CYBERSLACKING causes IT headaches. Networks bottleneck & costs climb as workers squander hours online casual surfing, downloading MP3s, video & other bandwidth hogs. Install SuperScout Web Filter on your network & in 20 minutes you'll know exactly WHO is doing WHAT, WHEN & WHERE on the Internet. SurfControl's innovative packet sniffing technology monitors, reports, blocks & manages all TCP/IP protocols. You'll be able to control your network resources & boost productivity. Try SuperScout Web *FREE* for 30 days. Simply GO TO: http://click.online.com/Click?q=cf-ebM-QLwTuw-JdhMJ4icKg792oxRR This week's Internet Security Focus USE CISCO ROUTERS TO DETECT AND LOG PORT SCANNING Port scanning is one method intruders use to hunt for potential targets on Internet hosts. Port scanning is relatively simple to do, and there are plenty of tools available for both operator-controlled and automated port scanning. Automated port scanning, such as what was implemented by Nimda and Code Red, allowed these viruses to spread very quickly. Since it's not likely that these two worms are the last we'll see of automated port scanning, it's important to be able to detect port scanning activity. Blocking ports at the router level can identify hostile hosts and networks and provide better overall performance than just a firewall system. All Cisco routers running Input/Output Supervisor (IOS) have the capability to block and log access to and from specific IP networks and User Datagram Protocol (UDP) and Transmission Control Protocol (TCP) ports. While this feature is available on other router equipment, this article focuses on how to use Cisco routers to block and detect port scanning. You can log port scans to a terminal or terminal emulator connected directly to the router, or to a host running syslog. For more information on configuring syslog services, do a search for syslog on CNET's Download.com. (NOTE: CNET is the parent company of TechRepublic.) http://click.online.com/Click?q=e4-ABYFQVkB4jIq58bIjLPMWTCX91cR **** STATEMENT OF CONFIDENTIALITY **** The information contained in this communication is Confidential and is intended only for the exclusive use of the Recipient named above, and may contain confidential or privileged Information. If the reader of this message is not the intended recipient ,please notify Freddie Samuel immediately either at +968- 684152 Extn 398 or [EMAIL PROTECTED] and destroy all copies of this message and any attachments. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24611&t=24611 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]