Enterprise Network Security Accessing the WAN Lecture week 4.
-
Upload
martin-owens -
Category
Documents
-
view
222 -
download
1
Transcript of Enterprise Network Security Accessing the WAN Lecture week 4.
Objectives
• General methods to mitigate security threats to Enterprise networks
• Configure Basic Router Security• Explain how to disable unused Cisco router
network services and interfaces • Explain how to use Cisco SDM• Manage Cisco IOS devices
Malicious Code AttacksA worm executes code and installs copies of itself in the memory of the infected computer, which can, in turn, infect other hosts.
A virus is malicious software that is attached to another program for the purpose of executing a particular unwanted function on a workstation.
Disable Unused Services and Interfaces
no service tcp-small-servers
no service udp-small-servers
no ip http server
no cpd run
Routing Protocol AuthenticationRouting systems can be attacked in two ways:• Disruption of peers (reset)• Falsification of routing information
IOS Maintenance• Periodically, the router requires updates to be
loaded to either the operating system or the configuration file.
• These updates are necessary to fix known security vulnerabilities, support new features that allow more advanced security policies, or improve performance
Backup and upgrade a Cisco IOS image
Router#copy tftp flash:
Address or name of remote host []?
Router#sh flash:
-#- --length-- -----date/time------ path
1 25678740 Mar 31 2010 06:36:00 +00:00 c1841-adventerprisek9-mz.124-16a.bin
2 685 Apr 14 2008 20:25:10 +00:00 pre_autosec.cfg
6250496 bytes available (25686016 bytes used)
Summary
• Security Threats to an Enterprise network include:– Unstructured threats– Structured threats– External threats– Internal threats
• Methods to lessen security threats consist of:– Device hardening– Use of antivirus software– Firewalls– Download security updates
Summary
• Basic router security involves the following:– Physical security– Update and backup IOS – Backup configuration files– Password configuration– Logging router activity
• Disable unused router interfaces & services to minimize their exploitation by intruders
• Cisco SDM– A web based management tool for configuring
security measures on Cisco routers
Summary• Cisco IOS Integrated File System (IFS)
– Allows for the creation, navigation & manipulation of directories on a cisco device