13.1. Why Secure Your Devices?

I can't tell you how many people ask, "Which services and processes on a router should I turn off?" Table 13.1 contains a listing of the most vulnerable and most commonly attacked services and processes, and you should seriously consider disabling these. The listing is not complete by any means, but it is a great place to start your security audit.

Table 13.1. Vulnerable Items to Secure
Open router interfacesLimit unauthorized access to the router and the network by disabling unused, open router interfaces.
Bootp serverThis service is enabled by default. This service is rarely required and should be disabled.
Cisco Discovery Protocol (CDP)This service is enabled by default. If not required, this service ...

Get Cisco® Network Professional's: Advanced Internetworking Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.