OuTian's 芭樂閣 » TCP Intercept on Cisco Device

TCP Intercept on Cisco Device

2005-12-30 21:55

Cisco L3 以上的設備 ( Switch / Router ) , 可以幫後端的機器做 TCP Intercept

也就是 three-way-handshaking 由它先做, 確定 connection 建立起來後再往後端傳.

好處是可以避免後面的機器受到 Syn Flood 之類的攻擊而癱瘓.

壞處是當量真的太大 , 它也撐不住的時候 , 後面的網段會整片死掉 XD

．Cisco 類別的文章 :
TestKing 640-801 v40.0.pdf

Articles (12)
- good (8)
- Novel (0)
- Story (4)
Database (1)
- Mysql (1)
Gossip (28)
My Links (0)
MySelf (296)
- About me (43)
- Heart (42)
- OTClass (10)
- Personal Diary (208)
Networking (8)
- Cisco (7)
OS (14)
- FreeBSD (7)
- Linux (2)
- Solaris (1)
- Windows (4)
Programming (9)
- C (1)
- Java (0)
- Perl (5)
- PHP (1)
- Shell (1)
Relaxation (5)
- Game (5)
Security (52)
- Tools (3)
- Vulnerability (19)
Service (1)
- Apache (1)
Software (1)
- unix (0)
- Windows (1)