Bugtraq mailing list archives
Re: Nmap and Cisco Dos, clarification --
From: avalon () COOMBS ANU EDU AU (Darren Reed)
Date: Fri, 24 Sep 1999 11:14:20 +1000
In some mail from Lancashire, Andrew, sie said:
This is to clarify what is being put out by Cisco and what we are being told by Cisco. Two e-mails below is what Cisco is telling us and makes allot more sense than what Cisco is telling Bugtraq. The last post to Bugtraq made mention that the arp cache was filling up and allocating memory for both reachable hosts and unreachable hosts (incompletes). Although what Lisa describes is true regarding the arp cache, it would not be true for our or most other sane persons environment. Since routers will only arp for what is local, that would mean that for the arp cache to fill up and us all the memory all networks in the 10.x.x.x range would need to be local. So that's not gonna happen but if you read the e-mail below that from Kenny (also at Cisco ) his explanation makes allot more sense considering we have hundreds of routers.
This may or may not be relevant, but Cisco allow you to set up routes via interfaces and in routing packets via that interface, they ARP for the destination IP address, relying on proxy ARP to get anwers. I've not studied this in detail, but it conceivably leads to a situation where with a big scan, you can end up with a large ARP cache even on a crossover connecting a /30 subnet between two routers. Darren
Current thread:
- BT/Cellnet Genie vulnerability James Fidell (Sep 15)
- Re: BT/Cellnet Genie vulnerability James Fidell (Sep 15)
- Vulnerability in dtaction on Digital Unix Zack Hubert (Sep 16)
- Re: Vulnerability in dtaction on Digital Unix Eric Gatenby (Sep 16)
- Nmap and Cisco Dos, clarification -- Lancashire, Andrew (Sep 22)
- Re: Nmap and Cisco Dos, clarification -- Darren Reed (Sep 23)
- LD_PROFILE local root exploit for solaris 2.6 Steve Mynott (Sep 22)
- Re: LD_PROFILE local root exploit for solaris 2.6 Brock Sides (Sep 23)
- Re: LD_PROFILE local root exploit for solaris 2.6 Erik Fichtner (Sep 23)
- Announcing Second Annual TooRcon Computer Security Expo Ben (Sep 25)
- Re: Vulnerability in dtaction on Digital Unix Eric Gatenby (Sep 16)
- Re: LD_PROFILE local root exploit for solaris 2.6 Casper Dik (Sep 24)
- Re: LD_PROFILE local root exploit for solaris 2.6 Eric Daniel (Sep 28)
- Re: LD_PROFILE local root exploit for solaris 2.6 Pavel Kankovsky (Sep 24)
- Re: Vulnerability in dtaction on Digital Unix Dave Dittrich (Sep 22)
- Re: ASUS mother board security question... Alan Cox (Sep 16)