Chapter 6. Cisco IOS Threat Defenses

The router-hardening techniques discussed in Chapter 5, “Cisco Device Hardening,” help to protect the router against many types of infrastructure attacks. The Cisco IOS Firewall feature set enables you to integrate a stateful firewall and an intrusion prevention system (IPS) to protect end stations located behind the router.

DMZ Design Review

A demilitarized zone (DMZ) is an intermediate network between an organization’s “inside” network and the “outside” world. Most organizations use a DMZ to host their Internet-accessible devices, such as web servers or mail servers. Some type of security ...

Get CCNP ISCW Quick Reference Sheets now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.