Cisco Security - a collection of some of the security commands in the Cisco IOS
ICMP information
Type 3 is the only one that should be allowed through firewalls and then only inbound.
If you use filtering to protect WEB servers or other public servers, you may want to permit inbound Source Quench (type 4) as well.
Top Ten Security Tips
1. Encourage or require employees to choos strong passwords. Internet programs contain tens of thousands of common passwrods that hackers use to break in to unsecured computer systems. Passwords should have a minimum of eight characters, be nondictionary words, and combine uppercase, lowercase characters, and symbols. ie. h%2M@9wGx
2. Requie new passwords passwords every 90 days. That way by the time the hacker gets your password it will be outdated.
3. Make sure your virus protection subscription is current.
4. Educate employees about E-mail attachments.
5. Install a total solution. If you're securing your own system instead of relying on an ISP or WEB host, don't just throw a firewall at a network and call it secure. Firewalls do a great job of securing a perimeter, but no one device does the trick. Complete solutions should include firewall, intrusion detection, and policy management.
6. Asses your secuity posture regularly. Don't secure and run. Hackers are constantly updating their technology.
7. When an employee leaves a company, remove the employee's network access immediately. Disgruntled emplyees are the greatest threat to any system's security.
8. If you allow people to work at home, provide a secure, centrally managed server for remote traffic.
9. Update your WEB server software regularly.
10. Don't run any unneccessary network services. If your employees don't need WEB access, don't procide it.
Copyright © Black-Death 1996-2000 all rights reserved : Other product names are trademarks or service marks of their respective owners