I remember seeing a pointer to a CISCO Border Router Config on one of the lists in the last few months an thought I saved the URL. Now I can't find it. I have searched the archives to no avail. I am not sure if it was NANOG or one of the firewall lists, but figured I would start here first. I believe is a link into the SANS institute, but can't find it there either. Any help would be appreciated.
Thanks
http://www.sans.org/dosstep/index.htm might be what you wanted?
It's not a complete list of what to do, but it's a start. I believe Phil
Benchoff (one of my co-workers) did the Cisco stuff for that. Note that
Phil is actually more fascist than that - not only do we do egress filtering
on *every* interface on *every* router, we also do *ingress* filtering as well.
If we see a packet coming in from the outside world with a source address
in one of our 2 /16s, it gets nuked. This of course relies on the fact that
we're basically a leaf site with no transit traffic, and there "should not be"
a path from an on-campus host off campus and back to another on-campus host.