13.1. Why Secure Your Devices?

I can't tell you how many people ask, "Which services and processes on a router should I turn off?" Table 13.1 contains a listing of the most vulnerable and most commonly attacked services and processes, and you should seriously consider disabling these. The listing is not complete by any means, but it is a great place to start your security audit.

Table 13.1. Vulnerable Items to Secure
ItemComments
Open router interfacesLimit unauthorized access to the router and the network by disabling unused, open router interfaces.
Bootp serverThis service is enabled by default. This service is rarely required and should be disabled.
Cisco Discovery Protocol (CDP)This service is enabled by default. If not required, this service ...

Get Cisco® Network Professional's: Advanced Internetworking Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.