Home   FAQs   New Arrivals   Specials   Pricing & Shipping   Location   Corporate Services  
 Search:   
 View Cart   Check Out   
 
Browse by Subject
I.T
 .NET 3.5
 Windows 2000/XP
 Cisco
 Java
 Office XP
 VB
 ASP
 UML
 Web Design
 E-Commerce
 Project Management
 Macintosh
 Linux
 Windows Server 2008
 Sharepoint 2007
Certification
 MCITP
 MCTS
Economics and Business
 Accounting
 Business Information Systems
 Economics
 Finance
 Management
 Marketing
 Human Resources
 OneKey Textbooks

Hardening Cisco Routers


Customers who bought this, also bought:
Special Edition Using Microsoft Active Directory
Lions' Commentary on Unix 6th Edition with Source Code
Microsoft Windows Server 2003 Unleashed, R2 (3rd) Edition
Cisco Cookbook
Unix Internals: The New Frontiers
Cisco IOS in a Nutshell, 2nd Edition
CCNA Official Exam Certification Library (CCNA Exam 640-802), 3rd edition

by: Thomas Akin

Notify me when in stock

On-line Price: $35.95 (includes GST)

Paperback package 176

20%Off Retail Price

You save: $9.00

Retail Price: $44.95

Publisher: O'REILLY,9.04.2002

Category: CISCO ROUTING Level: I/A

ISBN: 0596001665
ISBN13: 9780596001667
Add to Shopping Cart

This succinct book departs from other security literature by focusing exclusively on ways to secure Cisco routers, rather than the entire network. The rational is simple: If the router protecting a network is exposed to hackers, then so is the network behind it. This is a reference for protecting the protectors, and author Thomas Akin supplies all the tools necessary to turn a potential vulnerability into a strength.


  Full Description

As a network administrator, auditor or architect, you know the importance of securing your network and finding security solutions you can implement quickly. This succinct book departs from other security literature by focusing exclusively on ways to secure Cisco routers, rather than the entire network. The rational is simple: If the router protecting a network is exposed to hackers, then so is the network behind it. Hardening Cisco Routers is a reference for protecting the protectors. Included are the following topics:


              The importance of router security and where routers fit into an overall security plan


  Different router configurations for various versions of Cisco's IOS


  Standard ways to access a Cisco router and the security implications of each


  Password and privilege levels in Cisco routers


  Authentication, Authorization, and Accounting (AAA) control


  Router warning banner use (as recommended by the FBI)


  Unnecessary protocols and services commonly run on Cisco routers


  SNMP security


  Anti-spoofing


  Protocol security for RIP, OSPF, EIGRP, NTP, and BGP


  Logging violations


  Incident response


  Physical security


          Written by Thomas Akin, an experienced Certified Information Systems Security Professional (CISSP) and Certified Cisco Academic Instructor (CCAI), the book is well organized, emphasizing practicality and a hands-on approach. At the end of each chapter, Akin includes a Checklist that summarizes the hardening techniques discussed in the chapter. The Checklists help you double-check the configurations you have been instructed to make, and serve as quick references for future security procedures.


  Concise and to the point, Hardening Cisco Routers supplies you with all the tools necessary to turn a potential vulnerability into a strength. In an area that is otherwise poorly documented, this is the one book that will help you make your Cisco routers rock solid.


  

Table of Contents

Preface


  1. Router Security


          Router Security?


          Routers: The Foundation of the Internet


          What Can Go Wrong


          What Routers Are at Risk?


          Moving Forward


  2. IOS Version Security


          The Need for a Current IOS


          Determining the IOS Version


          IOS Versions and Vulnerabilities


          IOS Security Checklist


  3. Basic Access Control


          Authentication Versus Authorization


          Points of Access


          Basic Access Control


          Remote Administration


          Protection with IPSec


          Basic Access Control Security Checklist


  4. Passwords and Privilege Levels


          Password Encryption


          Clear-Text Passwords


          service password-encryption


          Enable Security


          Strong Passwords


          Keeping Configuration Files Secure


          Privilege Levels


          Password Checklist


  5. AAA Access Control


          Enabling AAA


          Local Authentication


          TACACS+ Authentication


          RADIUS Authentication


          Kerberos Authentication


          Token-Based Access Control


          AAA Security Checklist


  6. Warning Banners


          Legal Issues


          Example Banner


          Adding Login Banners


          Warning Banner Checklist


  7. Unnecessary Protocols and Services


          ICMP


          Source Routing


          Small Services


          Finger


          HTTP


          CDP


          Proxy ARP


          Miscellaneous


          SNMP


          Unnecessary Protocols and Services Checklist


  8. SNMP Security


          SNMP Versions


          Securing SNMP v1 and v2c


          Securing SNMP v3


          SNMP Management Servers


          SNMP Security Checklist


  9. Secure Routing and Antispoofing


          Antispoofing


          Routing Protocol Security


          Routing Protocol and Antispoofing Checklist


  10. NTP


          NTP Overview


          Configuring NTP


          NTP Checklist


  11. Logging


          Logging in General


          Router Logging


          ACL Violation Logging


          AAA Accounting


          Logging Checklist


  A. Checklist Quick Reference


  B. Physical Security


  C. Incident Response


  D. Configuration Examples


  E. Resources


  Index