The last time I looked, a Cisco router would send an ICMP
"administratively unreachable" message when an access list blocked a
packet. What the source host does with that is not up to the router.
Marc
Dimitris Vassilopoulos wrote:
>
> Team,
>
> I was wondering
> Is it possible to make a ro
I agree with you Chuck. It's very unsecure indeed...
However, consider it as one of the certifications' riddle...
Too theoretic, but must be solved... It has a solution, and it
is ROUTER oriented. No IDS or CSPM included...
In case you come up with something let me know...
Thanx
Dvass
Messag
Hi ,
This is possible if you have an Cisco IDS and CSPM.In that you can point
the router towards CSPM for Syslog and configure CSPM for those
access-list.
Kind Regards /Thangavel
--
CCIE (qual),CCS,CCDP,CCNP,MCSE
--
Not knowing the specific answer, I will say that in terms of good security
practice, it is NOT a good idea to provide specific or detailed information
as to why something fails. Detailed responses can provide help to the bad
people as they try to do bad things to your network.
Chuck
""Dimitr
4 matches
Mail list logo