Chapter 6. Cisco IOS Threat Defenses

The router-hardening techniques discussed in Chapter 5, “Cisco Device Hardening,” help to protect the router against many types of infrastructure attacks. The Cisco IOS Firewall feature set enables you to integrate a stateful firewall and an intrusion prevention system (IPS) to protect end stations located behind the router.

DMZ Design Review

A demilitarized zone (DMZ) is an intermediate network between an organization’s “inside” network and the “outside” world. Most organizations use a DMZ to host their Internet-accessible devices, such as web servers or mail servers. Some type of security ...

Get CCNP Quick Reference Sheets Bundle: Exams 642-901, 642-812, 642-845, 642-825 now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.