Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: BCP38 Question SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
BCP38 Question
HI Guys

Looking into deploy BCP38 on a customer facing interface. I came across some suggestion about deploying something like this.Looking for any input from you guys.

Thx


ip verify unicast source reachable-via rx allow-default 171



access-list 171 deny icmp any any echo log-input
access-list 171 deny icmp any any echo-reply log-input
access-list 171 deny udp any any eq echo log-input
access-list 171 deny udp any eq echo any log-input
access-list 171 deny tcp any any established log-input
access-list 171 deny tcp any any log-input
access-list 171 deny ip any any log-input
Anonymous

Sign Up for Free or Log In to start participating in the conversation!