Filtering out invalid routes--am I doing it correctly? need a better way .

By cewcathar ·
Hi, I'm totally new at this but I think (correct me if I think wrong) that it's a good idea to automatically deny any traffic that say has an address from my network but that comes from outside the network.

I can do this by configuring an inbound traffic list on the serial port
with a deny statement such as:

deny x.x.x.0 any

where x.x.x.0 is my network's address

However, if I use a reflect tcptraffic statement will that automatically take care of it, that is will that not allow traffic in even from my network's address unless it's already been logged as going out of my network??

Again, sorry to ask such a dumb question.

* * *
Also is there any way to set up a router so after traffic comes in with a spoofed address, all traffic from the source rooter is temporarily blocked??

* * *



This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Answers

Share your knowledge

Related Discussions

Related Forums