Mailing List Archive: dos attacks

dos attacks

Apr 21, 2003, 11:49 PM

Post #1 of 4 (1450 views)

Dear All,

Is there any way we can stop dos attacks through juniper routers? Pls send
me , if anybody have some configurations for stoping at least common DOS
attacks without overloading routers. This would be great help for me as well
as other juniper users in fighting DOS attacks....

J.S.Grewal

dos attacks [ In reply to ]

ras at e-gerbil

Apr 22, 2003, 12:00 AM

Post #2 of 4 (1436 views)

Permalink

On Tue, Apr 22, 2003 at 09:25:51AM +0530, jgrewal wrote:
> Dear All,
>
> Is there any way we can stop dos attacks through juniper routers? Pls
> send me , if anybody have some configurations for stoping at least
> common DOS attacks without overloading routers. This would be great help
> for me as well as other juniper users in fighting DOS attacks....

Besides the usual common sense stuff everyone else will mention:

term synflood {
from {
packet-length 40;
protocol tcp;
tcp-flags syn;
}
then {
count synflood-count;
policer 20m-limit;
loss-priority high;
}
}

http://www.e-gerbil.net/ras/projects/dos/

--
Richard A Steenbergen <ras@e-gerbil.net> http://www.e-gerbil.net/ras
GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC)

dos attacks [ In reply to ]

matt at juniper

Apr 22, 2003, 12:07 AM

Post #3 of 4 (1464 views)

Permalink

J.S.

You might wish to have a look at this, there are a couple of sections
specific to DoS attacks:

http://www.juniper.net/solutions/literature/app_note/350013.pdf

/matt

On Monday, April 21, 2003, at 11:55 PM, jgrewal wrote:

> Dear All,
>
> Is there any way we can stop dos attacks through juniper routers? Pls
> send
> me , if anybody have some configurations for stoping at least common
> DOS
> attacks without overloading routers. This would be great help for me
> as well
> as other juniper users in fighting DOS attacks....
>
>
> J.S.Grewal
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp@puck.nether.net
> http://puck.nether.net/mailman/listinfo/juniper-nsp
>

dos attacks [ In reply to ]

hank at att

Apr 22, 2003, 1:45 AM

Post #4 of 4 (1432 views)

Permalink

At 12:07 AM 22-04-03 -0400, Matt Kolon wrote:
>J.S.
>
>You might wish to have a look at this, there are a couple of sections
>specific to DoS attacks:
>
> http://www.juniper.net/solutions/literature/app_note/350013.pdf

Try also:
http://www.juniper.net/solutions/literature/app_note/350001.pdf

-Hank

>/matt
>
>
>On Monday, April 21, 2003, at 11:55 PM, jgrewal wrote:
>
>>Dear All,
>>
>>Is there any way we can stop dos attacks through juniper routers? Pls send
>>me , if anybody have some configurations for stoping at least common DOS
>>attacks without overloading routers. This would be great help for me as well
>>as other juniper users in fighting DOS attacks....
>>
>>
>>J.S.Grewal
>>
>>_______________________________________________
>>juniper-nsp mailing list juniper-nsp@puck.nether.net
>>http://puck.nether.net/mailman/listinfo/juniper-nsp
>
>_______________________________________________
>juniper-nsp mailing list juniper-nsp@puck.nether.net
>http://puck.nether.net/mailman/listinfo/juniper-nsp