Task 8.1 Dos Attack
I have solved this task with the following two lines access list. But I am not sure if it is correct. Does it fullfill the requirement of the task. "R8 's network 220.127.116.11/24 is being used as a reflector for ICMP Smurf and UDP Fraggle attacks" configure R1 and R6 to filter out this attack.
access-list 101 deny udp any 18.104.22.168 0.0.0.255
access-list 101 permit ip any any
Is my solution correct?
The solution guide is using:
deny ip any host 22.214.171.124
permit ip any any
Why we should prevent the whole ip traffic instead of just UDP? (ICMP is also udp traffic)
Please, can you explain?
Many Thanks in advance,