• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1471
  • Last Modified:

CIsco ASA 5510 SYN attack

We have recently upgraded from a PIX 515e to an ASA 5510 and am having problems with SYN attacks to 2 web servers on our DMZ which we did not have previously with the 515e.
Currently scanning attacks reads 121 and SYN attacks is saying 92

Is there anything we can do? the basic security is set.
Does anything in the ACL need changing to prevent this?


Thanks,
0
CTEC
Asked:
CTEC
1 Solution
 
jmeggersSr. Network and Security EngineerCommented:
You can limit embryonic connections, which is usually what's done to combat syn attacks.  See http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00809763ea.shtml
0

Featured Post

[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now