 |
Hardening Cisco Routers View Larger Image | Thomas Akin
O'Reilly Media, Paperback, Published February 2002, 173 pages, ISBN 0596001665 | List Price: $24.95
Our Price: $14.95
You Save: $10.00 (40% Off)
| | | Availability: Out-Of-Stock |
Be the First to Write a Review and tell the world about this title!People who purchase this book frequently purchase: - Cisco IOS Access Lists; Jeff Sedayao, $26.95, 40% Off!
- Cisco Field Manual: Catalyst Switch Configuration; David Hucaby, et al, $42.95, 22% Off!
- Cisco Field Manual: Router Configuration; David Hucaby, et al, $39.50, 21% Off!
- Cisco IOS Cookbook, 2nd Edition; Kevin Dooley, et al, $35.95, 40% Off!
Books on similar topics, in best-seller order:Books from the same publisher, in best-seller order:
As a network administrator, auditor or architect, you know the
importance of securing your network and finding security solutions you can implement
quickly. This succinct book departs from other security literature by focusing
exclusively on ways to secure Cisco routers, rather than the entire network. The
rational is simple: If the router protecting a network is exposed to hackers,
then so is the network behind it. Hardening Cisco Routers is a reference
for protecting the protectors. Included are the following topics:
- The importance of router security and where routers
fit into an overall security plan
- Different router configurations for various versions
of Cisco’s IOS
- Standard ways to access a Cisco router and the
security implications of each
- Password and privilege levels in Cisco routers
- Authentication, Authorization, and Accounting
(AAA) control
- Router warning banner use (as recommended by
the FBI)
- Unnecessary protocols and services commonly run
on Cisco routers
- SNMP security
- Anti-spoofing
- Protocol security for RIP, OSPF, EIGRP, NTP,
and BGP
- Logging violations
- Incident response
- Physical security
Written by Thomas Akin, an experienced Certified Information Systems Security
Professional (CISSP) and Certified Cisco Academic Instructor (CCAI), the book
is well organized, emphasizing practicality and a hands-on approach. At the
end of each chapter, Akin includes a Checklist that summarizes the hardening
techniques discussed in the chapter. The Checklists help you double-check the
configurations you have been instructed to make, and serve as quick references
for future security procedures.
Concise and to the point, Hardening Cisco Routers supplies you with all
the tools necessary to turn a potential vulnerability into a strength. In an
area that is otherwise poorly documented, this is the one book that will help
you make your Cisco routers rock solid.
Table of Contents
Preface
1. Router Security
Router Security?
Routers: The Foundation of the Internet
What Can Go Wrong
What Routers Are at Risk?
Moving Forward
2. IOS Version Security
The Need for a Current IOS
Determining the IOS Version
IOS Versions and Vulnerabilities
IOS Security Checklist
3. Basic Access Control
Authentication Versus Authorization
Points of Access
Basic Access Control
Remote Administration
Protection with IPSec
Basic Access Control Security Checklist
4. Passwords and Privilege Levels
Password Encryption
Clear-Text Passwords
service password-encryption
Enable Security
Strong Passwords
Keeping Configuration Files Secure
Privilege Levels
Password Checklist
5. AAA Access Control
Enabling AAA
Local Authentication
TACACS+ Authentication
RADIUS Authentication
Kerberos Authentication
Token-Based Access Control
AAA Security Checklist
6. Warning Banners
Legal Issues
Example Banner
Adding Login Banners
Warning Banner Checklist
7. Unnecessary Protocols and Services
ICMP
Source Routing
Small Services
Finger
HTTP
CDP
Proxy ARP
Miscellaneous
SNMP
Unnecessary Protocols and Services Checklist
8. SNMP Security
SNMP Versions
Securing SNMP v1 and v2c
Securing SNMP v3
SNMP Management Servers
SNMP Security Checklist
9. Secure Routing and Antispoofing
Antispoofing
Routing Protocol Security
Routing Protocol and Antispoofing Checklist
10. NTP
NTP Overview
Configuring NTP
NTP Checklist
11. Logging
Logging in General
Router Logging
ACL Violation Logging
AAA Accounting
Logging Checklist
A. Checklist Quick Reference
B. Physical Security
C. Incident Response
D. Configuration Examples
E. Resources
Index
|
|
