Chapter 6. Cisco IOS Threat Defenses
The router-hardening techniques discussed in Chapter 5, “Cisco Device Hardening,” help to protect the router against many types of infrastructure attacks. The Cisco IOS Firewall feature set enables you to integrate a stateful firewall and an intrusion prevention system (IPS) to protect end stations located behind the router.
DMZ Design Review
A demilitarized zone (DMZ) is an intermediate network between an organization’s “inside” network and the “outside” world. Most organizations use a DMZ to host their Internet-accessible devices, such as web servers or mail servers. Some type of security ...