Using ACLs to Stop Denial of Service Attacks

DoS attacks are network attacks in which an attacker tries to reduce the amount of legitimate access to a network by using up that network's resources. These resources could be the bandwidth on the link connecting the target network to the rest of the world or the amount of memory available on a router or server to process incoming connections or other similar resources. Chapter 14, “What Is Intrusion Detection?,” has more details on DoS attacks and some examples.

The following sections present some of the most basic strategies for using ACLs to prevent DoS attacks.

Using ACLs to Stop Traffic from Invalid IP Addresses

There can be quite a few reasons why an attacker forges a source address while staging ...

Get Network Security Principles and Practices now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.