| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Effective Data Investigation on Cisco Routers Addressing the three security principles, confidentiality, integrity and availability suggests that network administrators should constantly review and update configurations in routers to maintain a concerted effort of providing due care and due diligence in the network. When performing router security, network administrators should never divulge more information that does not need to be shared. This document provides steps needed to perform effective data investigation on Cisco routers using the router show commands for analysis.
Ophelia Livingston,
07/20/2005
|
|
Defense Against the DoS/DDoS Attacks on Cisco Routers DoS/DDos attacks have recently had a huge impact on some of the worlds largest websites. Hang Chau describes this type of attack in detail and outlines ways to prevent them using Cisco routers.
Hang Chau,
09/17/2004
|
|
Border Gateway Protocol -The Language of the Internet This paper is an examination of Border Gateway Protocol. The intent is to introduce to the reader the concepts involved with routing across the Internet and examine a sample BGP configuration on a Cisco router. The sample will include only the statements that directly apply to the BGP configuration and will not include any interfaces, IP routes, or information pertaining to any other routing protocol, although all of this information would be necessary to have a functioning BGP router. The study of BGP is much larger than this paper will detail. In conclusion there will be a consideration of S-BGP, an option currently underway to increase the level of security on the Internet.
By Yvonne Tracy, 04/18/2004
|
|
Is The Border Gateway Protocol Safe? This paper is about the security issues of organizations that are planning to run their own Border Gateway Protocol (BGP) router to provide a redundant internet connection. It is aimed at a wide audience from the non technical management to the technicians who will be implementing the BGP router. For those not familiar with Internet Protocol (IP) routing and the BGP process a high level description is included in section two. This paper includes the following sections; description of the scenario, a brief description of IP and interdomain routing, the risks when using BGP, mitigation steps and future developments.
By Sargon Elias, 04/18/2004
|
|
Disabling Unneeded Features and Services on Cisco Internet Gateway Routers The focus of this document is on closing down services and features as part of the hardening of the router. The classical idea behind this is that it is best practice to close down not only some services known as dangerous, but also all services and features that are not needed. There seems to be a consensus that especially on border routers, which are not protected by a firewall, this has high value. Originally I was convinced that it would be easy to build a list of services to close down. While concentrating on this during my research it turned out to be a major challenge.
04/17/2004
|
|
Securing The Network With Cisco Router This paper expands on the work of Mark Degner on securing Cisco routers. In it, Deger discussed about securing Cisco routers from malicious attack through limiting access, securing the remote administration of routers using secure shell and the shutting down of unneeded services provided by the routers. He also went on to cover SYN/smurf attacks protection, performing ingress/egress filtering and logging. This paper expands upon that by discussing additional steps and security features available on a Cisco router for enhancing the security of anetwork. First, we will cover the securing of routing updates through neighbor router authentication and route filtering. Next, we will discuss the topic of using IPSec to secure remote administration of Cisco routers. Following that, we will have an overview of reflexive access list and content-based application control. Then, we will touch on combating code red with network-based application recognition.
04/17/2004
|
|
Securing Your Network With An Internet Access Router (or Getting Your Money's Worth From Your Cisco Gear) When designing Internet defenses, administrators and security practitioners frequently overlook easy, inexpensive means of providing “Defense in Depth.” One of these methods is taking advantage of the security features built into the Cisco Internetwork Operating System (IOS). Cisco routers are quite prevalent in the market today, and many organizations use them for Internet access. Although the author’s familiarity with Cisco equipment will be the focus of this paper, the same techniques can also be applied to equipment from other vendors.
04/17/2004
|
|
Securing the Cisco Local Director In today's world of mission-critical, Web-based applications, the need for uptime and availability of these tools is one of the top requirements for organizations to both compete and succeed in this high-tech environment. Because of this fact, more and more companies are looking to design and implement highly-available, fault-tolerant infrastructures to ensure as close to 100% uptime as possible for their Web-based systems and applications. One solution organizations can implement in an effort to achieve this goal of maximum uptime is the use of network appliance load balancers. These specialized network devices typically present a single, virtual IP address and TCP or UDP port that “maps” to any number of commonly configured Web or application server IP addresses and the respective TCP or UDP service ports.
04/17/2004
|
|
Securing IP Routing and Remote Access on Cisco Routers Cisco equipment comprises a large part of the Internet’s infrastructure and is used by many large companies. Routers provide physical connectivity between networks by virtue of their physical attachments to either local area networks (LANs) or wide area networks (WANs). Cisco router has several vulnerabilities that could allow hackers to disrupt Internet traffic, intercept sensitive information such as passwords and credit card numbers or redirect traffic from web sites. Securing the router is the first thing that system administrator needs to do before any network to be implemented. Securing IP routing and remote access are ways of securing your routers.
04/17/2004
|
|
Router Audit Tool: Securing Cisco Routers Made Easy! This document will discuss the need for a tool like rat and it’s function. The installation and quick start guide sections provide all the information necessary to get started using rat. For those seeking more detail, a step-by-step narrative to using and customizing the Router Audit Tool is included. It includes samples of how to quickly reduce the security vulnerabilities of a new router and customize the rat installation. Given the excellent work of those before me, this document will not cover specific security requirements for securing Cisco Routers. Instead it will focus on the use of the Router Audit Tool to assist in maintaining a minimum standard configuration. For more information on security Cisco Routers, the references section of this paper contains links to several excellent resources.
04/17/2004
|
|
Page: 1 2 |
