| Ãë¾àÁ¡ID |
29153 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
22 |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
CISCO |
| »ó¼¼¼³¸í |
ÇØ´ç CISCO IOS´Â Spoofing ¹æÁö ÇÊÅ͸µÀÌ Àû¿ëµÇ¾î ÀÖÁö ¾Ê´Ù. Source IP ÁÖ¼Ò°¡ broadcast, multicast, loopbackÀÎ °ÍÀº ÀüÇô »ç¿ëµÉ ÇÊ¿ä°¡ ¾øÀ¸³ª Á¾Á¾ ¾ÇÀÇÀûÀÎ ¸ñÀû(DoS °ø°Ý ½Ã)À¸·Î »ç¿ëµÉ ¼öµµ ÀÖÀ¸¹Ç·Î, ACL¸¦ ¼³Á¤ÇÏ¿© º¯Á¶µÈ ºÒ¹ý ÆÐŶÀ» Â÷´ÜÇϵµ·Ï ¼³Á¤ÇØ¾ß ÇÑ´Ù.
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
CISCO IOS |
| ÇØ°áÃ¥ |
´ÙÀ½°ú °°ÀÌ Source IP¿¡ ACLÀ» Àû¿ëÇÑ´Ù.
Router# config terminal
Router(config)# access-list number deny ip 127.0.0.0 0.255.255.255 any
Router(config)# access-list number deny ip 224.0.0.0 31.255.255.255 any
Router(config)# access-list number deny ip host 0.0.0.0 any
Router(config)# access-list number permit ip any any |
| °ü·Ã URL |
(CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
