[AusNOG] Cisco 7200 a popular "ddos" target?

David Hughes David at Hughes.com.au
Wed Sep 29 13:46:27 EST 2010



On 29/09/2010, at 12:47 PM, Greg M wrote:

> Question is - is there malware out there that is designed to specifically
> DDoS the vty interfaces (ssh/telnet) of the 7200? It seems bizzare that this
> would be the case.


Nope.  You just have a software based router.  It's not designed to handle a stack of traffic aimed at the control plane.  Just for fun, send a non-production 7200 a flood ping of large ICMP packets (eg 15,000 byte packets) and watch your router try to handle the fragmentation.  It isn't pretty.


David
...


More information about the AusNOG mailing list