Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 859
  • Last Modified:

CSS 11501 DOS attack white list

Hello..... is it possible to white list a network or host address? I have a situation where a NAT'ed ip is being blocked possibly because of the number of connections coming through. Any input will be appreciated. Thanks.
0
cavacamite
Asked:
cavacamite
  • 2
  • 2
1 Solution
 
harbor235Commented:


CSS perfroms NAT, it is also a content service device, load balancer, etc .... The CSS doe snot handle spam or deal with DOS attacks.

harbor235 ;}
0
 
cavacamiteAuthor Commented:
Thanks. See the DOS output below. The source address is the one experiencing problems accessing the destination ip. The CSS isn't configured to block anything. Could there be any default values on the CSS causing the problem?
DOS Attack Event  1:
First Attack: 10/13/2008 15:47:56
Last Attack:  10/13/2008 16:09:01
Source Address: A.B.C.D  Destination Address: A.B.R.T
Event Type: SYN Attack Total Attacks: 402

0
 
harbor235Commented:


The DOS feature on the CSS is informational only, it provides statistics on potential attacks and allows you to send SNMP traps to alrt you, it doe snot perfrom DOS mitigation. You can accumulate statistics and you can also reset those statistics for monitoring purposes. I did not this feature existed until yooumade me look at it, thanx

http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/css11500series/v8.20/configuration/administration/guide/SNMP.html#wp1051871

harbor235 ;}
0
 
cavacamiteAuthor Commented:
Thanks very much for your help. That means back to troubleshooting the issue.
0

Featured Post

Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now