Home > Articles > Cisco Certification > CCIE > CCIE Security Practice Labs

CCIE Security Practice Labs

Section 10.0: Security Violations (5 points)

10.1: Denial of Service—DoS (3 points)

  1. R3 is experiencing an ICMP DoS attack on the WAN links. Take necessary action to prevent this. Do not deny ICMP.

10.2: IP Spoofing (2 points)

  1. Configure PIX to perform a route lookup based on the source address to protect from an IP spoofing attack using network ingress and egress filtering, as described in RFC 2267.

14. Verification, Hints, and Troubleshooting Tips | Next Section Previous Section