[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1464
  • Last Modified:

CIsco ASA 5510 SYN attack

We have recently upgraded from a PIX 515e to an ASA 5510 and am having problems with SYN attacks to 2 web servers on our DMZ which we did not have previously with the 515e.
Currently scanning attacks reads 121 and SYN attacks is saying 92

Is there anything we can do? the basic security is set.
Does anything in the ACL need changing to prevent this?


Thanks,
0
CTEC
Asked:
CTEC
1 Solution
 
jmeggersCommented:
You can limit embryonic connections, which is usually what's done to combat syn attacks.  See http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00809763ea.shtml
0

Featured Post

Restore individual SQL databases with ease

Veeam Explorer for Microsoft SQL Server delivers an easy-to-use, wizard-driven interface for restoring your databases from a backup. No expert SQL background required. Web interface provides a complete view of all available SQL databases to simplify the recovery of lost database

Tackle projects and never again get stuck behind a technical roadblock.
Join Now