Scribd Logo
Upload

Welcome to Scribd!

  • Enterprise Network Security: Accessing The WAN - Chapter 4

    Uploaded by

    Reymond D. Se
    9 views30 pages

    Original Title

    Exploration_Accessing_WAN_Chapter4.ppt

    Copyright

    © © All Rights Reserved

    Available Formats

    PPT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PPT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as ppt, pdf, or txt
    9 views30 pages

    Enterprise Network Security: Accessing The WAN - Chapter 4

    Uploaded by

    Reymond D. Se

    Copyright:

    © All Rights Reserved
    Download as PPT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as ppt, pdf, or txt
    of 30

    Enterprise Network

    Security

    Accessing the WAN Chapter 4

    ITE I Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Objectives

    Describe the general methods used to mitigate


    security threats to Enterprise networks

    Configure Basic Router Security

    Explain how to disable unused Cisco router network


    services and interfaces

    Explain how to use Cisco SDM

    Manage Cisco IOS devices

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Describe the General Methods used to Mitigate


    Security Threats to Enterprise Networks
    Explain how sophisticated attack tools and open
    networks have created an increased need for network
    security and dynamic security policies

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Describe the General Methods used to Mitigate


    Security Threats to Enterprise Networks
    Describe the most common security threats and how
    they impact enterprises

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Describe the General Methods used to Mitigate


    Security Threats to Enterprise Networks
    Describe the most common types of network attacks
    and how they impact enterprises

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Describe the General Methods used to Mitigate


    Security Threats to Enterprise Networks
    Describe the common mitigation techniques that
    enterprises use to protect themselves against threats

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Describe the General Methods used to Mitigate


    Security Threats to Enterprise Networks
    Explain the concept of the Network Security Wheel

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Describe the General Methods used to Mitigate


    Security Threats to Enterprise Networks
    Explain the goals of a comprehensive security policy in
    an organization

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Configure Basic Router Security


    Explain why the security of routers and their
    configuration settings is vital to network operation

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    Configure Basic Router Security


    Describe the recommended approach to applying Cisco
    IOS security features on network routers

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    10

    Configure Basic Router Security


    Describe the basic security measures needed to secure
    Cisco routers

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    11

    Explain How to Disable Unused Cisco


    Router Network Services and Interfaces
    Describe the router services and interfaces that are
    vulnerable to network attack

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    12

    Explain How to Disable Unused Cisco


    Router Network Services and Interfaces
    Explain the vulnerabilities posed by commonly
    configured management services

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    13

    Explain How to Disable Unused Cisco


    Router Network Services and Interfaces
    Explain how to secure a router with the command-line
    interface (CLI) auto secure command

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    14

    Explain How to Use Cisco SDM


    Provide an overview of Cisco SDM

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    15

    Explain How to Use Cisco SDM


    Explain the steps to configure a router to use Cisco
    SDM

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    16

    Explain How to Use Cisco SDM


    Explain the steps you follow to start SDM

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    17

    Explain How to Use Cisco SDM


    Describe the Cisco SDM Interface

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    18

    Explain How to Use Cisco SDM


    Describe the commonly used Cisco SDM wizards

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    19

    Explain How to Use Cisco SDM


    Explain how to use Cisco SDM for locking down your
    router

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    20

    Manage Cisco IOS Devices


    Describe the file systems used by a Cisco router

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    21

    Manage Cisco IOS Devices


    Describe how to backup and upgrade a Cisco IOS
    image

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    22

    Manage Cisco IOS Devices


    Explain how to back up and upgrade Cisco IOS
    software images using a network server

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    23

    Manage Cisco IOS Devices


    Explain how to recover a Cisco IOS software image

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    24

    Manage Cisco IOS Devices


    Compare the use of the show and debug commands
    when troubleshooting Cisco router configurations

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    25

    Manage Cisco IOS Devices


    Explain how to recover the enable password and the
    enable secret passwords

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    26

    Summary
    Security Threats to an Enterprise network include:
    Unstructured threats
    Structured threats
    External threats
    Internal threats

    Methods to lessen security threats consist of:


    Device hardening
    Use of antivirus software
    Firewalls
    Download security updates

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    27

    Summary
    Basic router security involves the following:
    Physical security
    Update and backup IOS
    Backup configuration files
    Password configuration
    Logging router activity

    Disable unused router interfaces & services to minimize


    their exploitation by intruders
    Cisco SDM
    A web based management tool for configuring security
    measures on Cisco routers

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    28

    Summary
    Cisco IOS Integrated File System (IFS)
    Allows for the creation, navigation & manipulation of
    directories on a cisco device

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    29

    ITE 1 Chapter 6

    2006 Cisco Systems, Inc. All rights reserved.

    Cisco Public

    30

    You might also like