Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

What does this do ?

0 views
Skip to first unread message

Jacek A. Ponarski

unread,
Dec 21, 1995, 3:00:00 AM12/21/95
to

service udp-small-servers
service tcp-small-servers

I cannot find this command anywhere in my manuals and I'm just being
curious.
Thanks

--Jacek

Paul Ferguson

unread,
Dec 21, 1995, 3:00:00 AM12/21/95
to

[thanks to Jenny Yuan]

[snip]

This knob was put in there for security reasons. When TCP small servers
are turned off, accesses to ECHO, DISCARD, and CHARGEN ports will cause
the server to generate ICMP port unreachable messages back to the sender.
Access to TACACS port without a TACACS server running will result in
the same message.

There's also a equilvalent command for UDP, "service udp-small-servers"
which disables services for the UDP well known ports: ECHO, DISCARD,
CHARGEN, TACACS, BOOTP, and GDP.

By default, the serives are on for both TCP and UDP small servers.
The server will silently discard the packets when an access to the
ports are attempted.

[snip]

- paul


--
Paul Ferguson || ||
Consulting Engineering || ||
Reston, Virginia USA |||| ||||
tel: +1.703.716.9538 ..:||||||:..:||||||:..
e-mail: pfer...@cisco.com c i s c o S y s t e m s


Tony Li

unread,
Dec 27, 1995, 3:00:00 AM12/27/95
to

service udp-small-servers
service tcp-small-servers

I cannot find this command anywhere in my manuals and I'm just being
curious.

These enable certain trivial listeners (e.g., discard, chargen) that are on
by default. In some future release, we will leave these off by default.
This will be the knob to enable them. To ease the migration, we've made
this command explicit and visible now, so that migration to a new version
will have the same behavior.

Tony


0 new messages