chapter 4 network security

8/3/2019 Chapter 4 Network Security

http://slidepdf.com/reader/full/chapter-4-network-security 1/30

© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 1Version 4.0

Enterprise NetworkSecurity

Accessing the WAN ± Chapter 4



© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 2

Objectives

Describe the general methods used to mitigatesecurity threats to Enterprise networks

Configure Basic Router Security

Explain how to disable unused Cisco router networkservices and interfaces

Explain how to use Cisco SDM

Manage Cisco IOS devices




Describe the General Methods used to MitigateSecurity Threats to Enterprise Networks

Explain how sophisticated attack tools and opennetworks have created an increased need for networksecurity and dynamic security policies





Describe the most common security threats and howthey impact enterprises





Describe the most common types of network attacksand how they impact enterprises





Describe the common mitigation techniques thatenterprises use to protect themselves against threats





Explain the concept of the Network Security Wheel





Explain the goals of a comprehensive security policy inan organization





Explain why the security of routers and their configuration settings is vital to network operation





Describe the recommended approach to applying CiscoIOS security features on network routers





Describe the basic security measures needed to secureCisco routers




Explain How to Disable Unused CiscoRouter Network Services and Interfaces

Describe the router services and interfaces that arevulnerable to network attack





Explain the vulnerabilities posed by commonlyconfigured management services





Explain how to secure a router with the command-lineinterface (CLI) auto secure command




Explain How to Use Cisco SDM

Provide an overview of Cisco SDM





Explain the steps to configure a router to use CiscoSDM





Explain the steps you follow to start SDM





Describe the Cisco SDM Interface





Describe the commonly used Cisco SDM wizards





Explain how to use Cisco SDM for locking down your router




Manage Cisco IOS Devices

Describe the file systems used by a Cisco router





Describe how to backup and upgrade a Cisco IOSimage





Explain how to back up and upgrade Cisco IOSsoftware images using a network server





Explain how to recover a Cisco IOS software image





Compare the use of the show and debug commandswhen troubleshooting Cisco router configurations





Explain how to recover the enable password and theenable secret passwords




Summary

Security Threats to an Enterprise network include:

±Unstructured threats

±Structured threats

±External threats

±Internal threats

Methods to lessen security threats consist of:

±Device hardening

±Use of antivirus software

±Firewalls

±Download security updates




Summary

Basic router security involves the following: ±Physical security

±Update and backup IOS

±Backup configuration files

±Password configuration

±Logging router activity

Disable unused router interfaces & services to minimizetheir exploitation by intruders

Cisco SDM

±A web based management tool for configuring securitymeasures on Cisco routers




Summary

Cisco IOS Integrated File System (IFS)

±Allows for the creation, navigation & manipulation of directories on a cisco device

chapter 4 network security

Documents