Read more
As a network administrator, auditor or architect, you know the importance of securing your network and finding security solutions you can implement quickly. This succinct book departs from other security literature by focusing exclusively on ways to secure Cisco routers, rather than the entire network. The rational is simple: If the router protecting a network is exposed to hackers, then so is the network behind it. Hardening Cisco Routers is a reference for protecting the protectors. Included are the following topics: The importance of router security and where routers fit into an overall security plan - Different router configurations for various versions of Cisco?s IOS - Standard ways to access a Cisco router and the security implications of each - Password and privilege levels in Cisco routers - Authentication, Authorization, and Accounting (AAA) control - Router warning banner use (as recommended by the FBI) - Unnecessary protocols and services commonly run on Cisco routers - SNMP security - Anti-spoofing - Protocol security for RIP, OSPF, EIGRP, NTP, and BGP - Logging violations - Incident response - Physical security.
Written by Thomas Akin, an experienced Certified Information Systems Security Professional (CISSP) and Certified Cisco Academic Instructor (CCAI), the book is well organized, emphasizing practicality and a hands-on approach. At the end of each chapter, Akin includes a Checklist that summarizes the hardening techniques discussed in the chapter. The Checklists help you double-check the configurations you have been instructed to make, and serve as quick references for future security procedures.
Concise and to the point, Hardening Cisco Routers supplies you with all the tools necessary to turn a potential vulnerability into a strength. In an area that is otherwise poorly documented, this is the one book that will help you make your Cisco routers rock solid.
List of contents
Preface
Chapter 1: Router Security
Chapter 2: IOS Version Security
Chapter 3: Basic Access Control
Chapter 4: Passwords and Privilege Levels
Chapter 5: AAA Access Control
Chapter 6: Warning Banners
Chapter 7: Unnecessary Protocols and Services
Chapter 8: SNMP Security
Chapter 9: Secure Routing and Antispoofing
Chapter 10: NTP
Chapter 11: Logging
Appendix A: Checklist Quick Reference
Appendix B: Physical Security
Appendix C: Incident Response
Appendix D: Configuration Examples
Appendix E: Resources
Colophon
About the author
Thomas Akin is a Certified Information Systems Security Professional (CISSP) with a decade of experience in information security. He is the founding director of the Southeast Cybercrime Institute at Kennesaw State University, where he also serves as chairman of the Institute's Board of Advisors. He is an active member of the Attorney General's Georgia Cybercrime Task Force and heads its education committee. Heavily involved in Atlanta's InfoSec community, Thomas spends much of his time teaching, writing, and trying to keep his security, network, and Unix certifications up to date. Finally, he is the owner of and principal consultant for CrossRealm Consulting. More information about Thomas can be found at http://www.crossrealm.com.
Summary
Network administrators, auditors and architects know the importance of securing networks and finding security solutions that can be implemented quickly. This text focuses on ways to secure Cisco routers, it is a reference for protecting the protectors.
