Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Teardrop attack

Posted on 2006-10-24
2
1,744 Views
Last Modified: 2008-01-16
Hey guys

 i have netscreen firewall, i had a teardrop attack in my firewall from a selected ip range, can anyone help me how to block this attack or how to block this iprange from outside interface.. any ideas

Thanks for the help

Suresh
0
Comment
Question by:xavier_amala
2 Comments
 
LVL 11

Expert Comment

by:prueconsulting
ID: 17803721
Teardrop should not affect a netscreen firewall as its an IP fragment bug exploit for early linux and Windows systems.

0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 500 total points
ID: 17805115
Is it pointed to the firewall itself ? or inside clients/via MIP/VIP ???

If so, a generic policy for some time would be good enough;

set policy id <id> from untrust to trust <Attacker> any any deny log

The above should do it.

Cheers,
Rajesh
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Sonicwall NSA failover & LB 4 57
What does this mean to you?  Source side firewall 3 89
Cisco asax sourcefire Ips 7 69
Need help on Windows Firewall blocking program 7 45
Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question