Buying Options
Hardening Cisco Routers
Print $24.95
Add to Cart
Print+Ebook $27.45
Add to Cart
Ebook $19.99
(Mobi, PDF, ePub)
Add to Cart
Safari Books Online
Add to Cart
What is this?
Print £18.99
Add to Cart
What is this?

Hardening Cisco Routers

O'Reilly Media
October 2004
192
Description
This succinct book departs from other security literature by focusing exclusively on ways to secure Cisco routers, rather than the entire network. The rational is simple: If the router protecting a network is exposed to hackers, then so is the network behind it. This is a reference for protecting the protectors, and author Thomas Akin supplies all the tools necessary to turn a potential vulnerability into a strength. Full Description
Table of Contents

  1. Chapter 1 Router Security

    1. Router Security?

    2. Routers: The Foundation of the Internet

    3. What Can Go Wrong

    4. What Routers Are at Risk?

    5. Moving Forward

  2. Chapter 2 IOS Version Security

    1. The Need for a Current IOS

    2. Determining the IOS Version

    3. IOS Versions and Vulnerabilities

    4. IOS Security Checklist

  3. Chapter 3 Basic Access Control

    1. Authentication Versus Authorization

    2. Points of Access

    3. Basic Access Control

    4. Remote Administration

    5. Protection with IPSec

    6. Basic Access Control Security Checklist

  4. Chapter 4 Passwords and Privilege Levels

    1. Password Encryption

    2. Clear-Text Passwords

    3. service password-encryption

    4. Enable Security

    5. Strong Passwords

    6. Keeping Configuration Files Secure

    7. Privilege Levels

    8. Password Checklist

  5. Chapter 5 AAA Access Control

    1. Enabling AAA

    2. Local Authentication

    3. TACACS+ Authentication

    4. RADIUS Authentication

    5. Kerberos Authentication

    6. Token-Based Access Control

    7. AAA Security Checklist

  6. Chapter 6 Warning Banners

    1. Legal Issues

    2. Example Banner

    3. Adding Login Banners

    4. Warning Banner Checklist

  7. Chapter 7 Unnecessary Protocols and Services

    1. ICMP

    2. Source Routing

    3. Small Services

    4. Finger

    5. HTTP

    6. CDP

    7. Proxy ARP

    8. Miscellaneous

    9. SNMP

    10. Unnecessary Protocols and Services Checklist

  8. Chapter 8 SNMP Security

    1. SNMP Versions

    2. Securing SNMP v1 and v2c

    3. Securing SNMP v3

    4. SNMP Management Servers

    5. SNMP Security Checklist

  9. Chapter 9 Secure Routing and Antispoofing

    1. Antispoofing

    2. Routing Protocol Security

    3. Routing Protocol and Antispoofing Checklist

  10. Chapter 10 NTP

    1. NTP Overview

    2. Configuring NTP

    3. NTP Checklist

  11. Chapter 11 Logging

    1. Logging in General

    2. Router Logging

    3. ACL Violation Logging

    4. AAA Accounting

    5. Logging Checklist

  1. Appendix A Checklist Quick Reference

    1. Hardening Your Routers

    2. Auditing Your Routers

    3. Cisco Router Security Checklist

  2. Appendix B Physical Security

    1. Protection Against People

    2. Protection Against Murphy and Mother Nature

    3. Physical Security Checklist

  3. Appendix C Incident Response

    1. Warning!

    2. Keys to Investigating

    3. Attack Versus Accident

    4. Discover What Happened and the Scope of the Incident

    5. Evidence Preservation

    6. Recovering from the Incident

    7. Preventing Future Incidents

    8. Incident Response Checklist

  4. Appendix D Configuration Examples

    1. Basic Example Configuration

    2. AAA Example Configuration

    3. SNMP Example Configuration

    4. HTTP Configuration

  5. Appendix E Resources

    1. Web Sites

    2. Books

  6. Colophon

View Full Table of Contents
Product Details
Title: Hardening Cisco Routers
By: Thomas Akin
Publisher: O'Reilly Media
Print Release: October 2004
Ebook Release: February 2009
Pages: 192 pages
Print ISBN: 978-0-596-00166-7 | ISBN 10: 0-596-00166-5
Ebook ISBN: 978-0-596-10329-3 | ISBN 10: 0-596-10329-8
About the Author

  1. Thomas Akin

    Thomas Akin is a Certified Information Systems Security Professional (CISSP) with a decade of experience in information security. He is the founding director of the Southeast Cybercrime Institute at Kennesaw State University, where he also serves as chairman of the Institute's Board of Advisors. He is an active member of the Attorney General's Georgia Cybercrime Task Force and heads its education committee. Heavily involved in Atlanta's InfoSec community, Thomas spends much of his time teaching, writing, and trying to keep his security, network, and Unix certifications up to date. Finally, he is the owner of and principal consultant for CrossRealm Consulting. More information about Thomas can be found at http://www.crossrealm.com.

    View Thomas Akin's full profile page.

Colophon
Our look is the result of reader comments, our own experimentation, and feedback from distribution channels. Distinctive covers complement our distinctive approach to technical topics, breathing personality and life into potentially dry subjects. The animal on the cover of Hardening Cisco Routers is a North African wild ass. This mammal, an ancestor of the domestic donkey, once lived in the Moroccan Atlas Mountain range and possibly through out North Africa. The small population of wild asses is now confined to Sudan, Somalia, and Ethiopia. Adapted to arid grasslands, the North African wild ass eats thorny, dry plants and grass. It retreats to rocky areas for shade during the hot, sunny hours of the day and is active in the early morning, at dusk, and at night. The wild ass needs water every two to three days and lives alone or temporarily in small groups of offspring to conserver food and water. Males generally live alone, especially when defending territory that contains sources of water. The North African wild ass is in grave danger of extinction. Domestication, breeding with domestic animals, hunting, and competition with other animals (including humans) for water has diminished the population to a few hundred. Well-meaning tourist who chase the animals for photographs often exhaust the wild asses to the point of death. The animal is now one of the rarest mammals in the world, despite conservation efforts. Ann Schirmer was the production editor and proofreader, and Norma Emory was the copyeditor, for Hardening Cisco Routers. Claire Cloutier, Tatiana Apandi Diaz, and Rachel Wheeler provided quality control. Johnna VanHoose Dinse wrote the index. Emma Colby designed the cover of this book, based on a series design by Edie Freedman. The cover image is a 19th-century engraving from the Dover Pictorial Archive. Emma Colby produced the cover layout with QuarkXPress 4.1 using Adobe's ITC Garamond font. Melanie Wang designed the interior layout, based on a series design by David Futato. Mihaela Maier converted the files from Microsoft Word to FrameMaker 5.5.6 using tools created by Mike Sierra. The text font is Linotype Birka; the heading font is Adobe Myriad Condensed; and the code font is LucasFont's TheSans Mono Condensed. The illustrations that appear in the book were produced by Robert Romano and Jessamyn Read using Macromedia FreeHand 9 and Adobe Photoshop 6. The tip and warning icons were drawn by Christopher Bing. This colophon was written by Ann Schirmer.
Got a Question?
icons
Favicon Service and support by Satisfaction