Book description
Cisco authorized self-study book for CCSP 642-501 foundation learning
Identify the lineup of Cisco Systems network security products and enumerate the components of a complete security policy
Use Cisco Secure ACS for Windows and Cisco Secure ACS for UNIX to implement TACACS+ and RADIUS AAA support in Cisco router networks
Configure AAA support on perimeter Cisco routers and Cisco IOS Firewalls
Implement standard practices to secure administrative access and disable unused router protocols, services, and interfaces
Use AutoSecure to configure security parameters on Cisco routers
Configure Cisco IOS Firewalls for CBAC, Authentication Proxy, and AAA support
Configure and manage Cisco IOS IDS router signatures and audit rules
Monitor Cisco IOS IDS routers using Security Monitor or Syslog servers
Configure IPSec VPN tunnels on Cisco routers using preshared keys or RSA signatures
Configure Cisco routers to use IPSec with Network Address Translation
Use Security Device Manager and Router Management Center to configure and manage Cisco IOS VPN and Cisco IOS Firewall policies
Mitigate common router security threats with access control lists (ACLs)
CCSP Self-Study: Securing Cisco IOS Networks (SECUR) is a complete reference for security practices, protocols, software, and equipment that work on or in conjunction with Cisco IOS equipment to provide layers of security to networks. In addition to acting as a key study aid for the CCSP SECUR 642-501 exam, this book will be an invaluable theory and configuration guide for years to come.
CCSP Self-Study: Securing Cisco IOS Networks (SECUR) is a Cisco authorized, self-paced learning tool that helps you gain mastery over all security techniques and technologies, including newer topics such as Cisco Easy VPN and Security Device Manager (SDM). Chapter overviews bring you quickly up to speed on technologies you can use to secure your network. Configuration examples are designed to show you how to make Cisco IOS devices secure, and unique chapter-ending review questions test your knowledge.
Whether you are seeking a reference guide to working with Cisco IOS security or a study guide for the 642-501 exam, CCSP Self-Study: Securing Cisco IOS Networks (SECUR) is the reference you are looking for.
CCSP Self-Study: Securing Cisco IOS Networks (SECUR) is part of a recommended learning path from Cisco Systems that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.
This volume is in the Certification Self-Study Series offered by Cisco Press. Books in this series provide officially developed training solutions to help networking professionals understand technology implementations and prepare for the Cisco Career Certifications examinations.
158705151603292004
Table of contents
- Copyright
- About the Author
- Acknowledgments
- Foreword
- Preface
- Introduction
- Introduction to Network Security
- Basic Cisco Router Security
-
Advanced AAA Security for Cisco Router Networks
- Cisco Secure ACS Introduction
- Installing Cisco Secure ACS 3.0 for Windows 2000/NT Servers
- Administering and Troubleshooting Cisco Secure ACS for Windows
- TACACS+ Overview
- RADIUS Overview
- Kerberos Overview
- Chapter Summary
- Cisco IOS Commands Presented in This Chapter
- Chapter Review Questions
- Case Study
-
Cisco Router Threat Mitigation
- Using Routers to Secure the Network
- Securing Router Services and Interfaces
- Disabling Unused Router Interfaces
- Implementing Cisco Access Control Lists
- Mitigating Security Threats by Using ACLs
- Filtering Router Service Traffic
- Filtering Network Traffic
- DDoS Mitigation
- Sample Router Configuration
- Implementing Syslog Logging
- Designing Secure Management and Reporting for Enterprise Networks
- Using AutoSecure to Secure Cisco Routers
- Chapter Summary
- Cisco IOS Commands Presented in This Chapter
- Chapter Review Questions
- Case Study
- Cisco IOS Firewall Context-Based Access Control Configuration
-
Cisco IOS Firewall Authentication Proxy
- Introduction to the Cisco IOS Firewall Authentication Proxy
- Configuring the AAA Server
- Configuring the Cisco IOS Firewall with an AAA Server
- Configuring the Authentication Proxy
- Testing and Verifying the Configuration
- Chapter Summary
- Cisco IOS Commands Presented in This Chapter
- Chapter Review Questions
- Case Study
- Cisco IOS Firewall Intrusion Detection System
-
Building IPSec VPNs Using Cisco Routers and Pre-Shared Keys
- Cisco Routers Enable Secure VPNs
- What Is IPSec?
- IPSec Protocol Framework
- Five Steps of IPSec
- IPSec and Dynamic Virtual Private Networks
- Configuring IPSec for IKE Pre-Shared Keys
- Configuring IPSec Manually
- Configuring IPSec for RSA-Encrypted Nonces
- Using NAT with IPSec
- Chapter Summary
- Cisco IOS Commands Presented in This Chapter
- Chapter Review Questions
- Case Study
- Building Advanced IPSec VPNs Using Cisco Routers and Certificate Authorities
-
Configuring IOS Remote Access Using Cisco Easy VPN
- Cisco Easy VPN Introduction
- Cisco Easy VPN Server Overview
- Cisco Easy VPN Remote Overview
- Configuring Cisco Easy VPN Server for XAUTH
- RADIUS Authentication for Group Profiles
- Cisco VPN Client 3.5 Installation and Configuration Tasks
- Working with Cisco VPN Client 3.5
- Upcoming Cisco VPN Client Changes
- Chapter Summary
- Cisco IOS Commands Presented in This Chapter
- Chapter Review Questions
- Case Study
-
Securing Cisco Routers Using Security Device Manager
- Understanding Security Device Manager
- Understanding SDM Software
- Using the SDM Startup Wizard
- Introducing the SDM User Interface
- Configuring a WAN Using the WAN Wizard
- Using SDM to Configure a Firewall
- Using SDM to Configure a VPN
- Using SDM to Perform Security Audits
- Using the Factory Reset Wizard
- Using SDM Advanced Mode
- Understanding Monitor Mode
- Chapter Summary
- Cisco IOS Commands Presented in This Chapter
- Chapter Review Questions
- Case Study
-
Managing Enterprise VPN Routers
- Router MC 1.2.1 Introduction
- Installing Router MC
- Using Router MC
- Creating Workflows and Activities
- Configuring General Cisco IOS Firewall Settings
- Building Access Rules
- Using Building Blocks
- Network Address Translation Rules
- Managing Configurations
- Administration
- Chapter Summary
- Chapter Review Questions
- Case Study
- Case Study
- Answers to Chapter Review Questions
- Sample Network Security Policy
- Configuring Standard and Extended Access Lists
- Glossary
- Index
Product information
- Title: CCSP Self-Study: Securing Cisco IOS Networks (SECUR)
- Author(s):
- Release date: April 2004
- Publisher(s): Cisco Press
- ISBN: 9781587051517
You might also like
book
CCNP Security VPN 642-648 Quick Reference
As a final exam preparation tool, the CCNP Security VPN 642-648 Quick Reference provides a concise …
book
CCSP Self-Study: CCSP SNRS Exam Certification Guide
Official self-study test preparation guide for the Cisco SNRS exam 642-502 Attack threats Router management and …
book
The Complete Cisco VPN Configuration Guide
Use Cisco concentrators, routers, Cisco PIX and Cisco ASA security appliances, and remote access clients to …
book
Cloud Security Guidelines for IBM Power Systems
This IBM® Redbooks® publication is a comprehensive guide that covers cloud security considerations for IBM Power …