Administrators are advised to apply the appropriate updates.
Administrators are advised to allow only trusted users to have network access.
Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access the affected systems.
Administrators may consider disabling inspection of SIP traffic if this option is not needed by removing the match protocol sip
command from the corresponding class map used by the ZBFW configuration.
Apply hardware rate limiter features to limit packets requiring processing by the device's CPU in order to mitigate denial-of-service (DoS) attacks. See your vendor's documentation for specific configuration instructions. For hardware rate limiting configuration details, consult the Cisco Catalyst 6500 Denial of Service (DoS) Protection Configuration Guide
Administrators are advised to monitor critical systems.