----- Original Message ----- From: "Blazen Wireless" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, September 24, 2003 9:45 PM Subject: Re: [smartBridges] Slow down problems
> Also could it be coming from outside (WAN) the network trying to get into my > network? > > Yep - very possible. There is a ton of traffic from worms out there scanning away. If your running a Cisco router you can block the Nachi packets with something like this: route-map nachiworm permit 10 match ip address nachilist match length 92 92 set interface Null0 ! ip access-list extended nachilist permit icmp any any echo permit icmp any any echo-reply and then on the interface going to the wireless network (this command goes on the interface): ip policy route-map nachiworm This blocks only the ICMP echo and echo reply packets from the Nachi worm which are 92 bytes long (different than normal traceroute and ping packets). You do not want to block all ICMP into the network or you break a lot of things. You can just block echo and echo reply if you want but it makes troubleshooting somewhat more difficult since ping will quit working. Mark Radabaugh Amplex (419) 720-3635 ----------ANNOUNCEMENT---------- Don't forget to register for WISPCON IV http://www.wispcon.info/us/wispcon-iv/wispcon-iv.htm The PART-15.ORG smartBridges Discussion List To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe smartBridges <yournickname> To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe smartBridges) Archives: http://archives.part-15.org
