Release date:Updated on:
Affected Systems:Cisco ASR 5000Description:--------------------------------------------------------------------------------Bugtraq id: 65052CVE (CAN) ID: CVE-2014-0669
The Cisco ASR 5000 series is a carrier-level platform that can be used to deploy high-demand 3G networks and migrate to long-term evolution (LTE.
The Gateway GPRS of the Cisco
Many junior network administrators ignore security settings when using Cisco routers, and the following three are ideal for novice users to configure network security when using Cisco routers.
One, the security configuration of the router "access control"
1, the administra
patch IOS software in a timely manner.
Ii. vro Network Service Security Configuration
1. disable CDP (Cisco Discovery Protocol ). For example:Router (Config) # no cdp runRouter (Config-if) # no cdp enable2. Disable other TCP and UDP Small services.Router (Config) # no service tcp-small-serversRouter (Config) # no service udp-samll-servers3. Disable the Finger service.Router (Config) # no ip fingerRouter (
4tppa55w0rdRouter#copy startup-config ftp:
9. Upgrade and patch IOS software in a timely manner.
Ii. vro Network Service Security Configuration
1. disable CDP (Cisco Discovery Protocol ). For example:Router (Config) # no cdp runRouter (Config-if) # no cdp enable2. Disable other TCP and UDP Small services.Router (Config) # no service tcp-small-serversRouter (Config) # no service udp-samll-ser
I. vro Network Service Security Configuration1. disable CDP (Cisco Discovery Protocol ). For example:Router (Config) # no cdp runRouter (Config-if) # no cdp enable2. Disable other TCP and UDP Small services.Router (Config) # no service tcp-small-serversRouter (Config) # no service udp-samll-servers3. Disable the Finger service.Router (Config) # no ip fingerRouter (Config) # no service finger4. We recommend
. Upgrade and patch IOS software in a timely manner.Ii. vro Network Service Security Configuration1. disable CDP (Cisco Discovery Protocol ). For example:Router (Config) # no cdp runRouter (Config-if) # no cdp enable2. Disable other TCP and UDP Small services.Router (Config) # no service tcp-small-serversRouter (Config) # no service udp-samll-servers3. Disable the Finger service.Router (Config) # no ip fing
Essential security commands for CISCO router initialization 1. Security Settings for vro Access Control 1. Strict control over the administrator who can access the vro. Record Filing is required for all maintenance tasks. Www.2cto.com 2. do not access the vro remotely. Even if you need to access the vro remotely, we recommend that you use the access control list
With the development of the international interconnection Network, some enterprises have established their own intranet and connected with the Internet through a dedicated line. In order to ensure the security of intranet, it is necessary to use dedicated firewall computer to prevent illegal intrusion. The router firewall can only be used as a filter and cannot hide the internal network structure from the intruder's eyes. As long as a computer on the
CiscoRouter Security Configuration
1. Security Configuration of vro Access Control1. strictly control the administrator who can access the vro. Record Filing is required for any maintenance.2. For vrouters with remote access, we recommend that you use the access control list and high-strength password control.3. Strictly control access to the con port and set a high-strength password for the con port.4. dis
1. zenoss
Zenoss is an enterprise-level open-source server and network monitoring tool. It is most notable for its virtualization and cloud computing monitoring capabilities. It is hard to see that other old monitoring tools have this function.2. ossim
Ossim is short for open source security information management (Open Source security information manag
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.