Belkin route security protection measures

Source: Internet
Author: User
Tags http authentication

The security measures of the Belkin route are generally at the periphery of the network, which is an important bridge between the LAN and the external network. If the security of the router is not guaranteed, therefore, there is no security for the entire network. Therefore, you must make reasonable configurations for the router settings to avoid loopholes and risks to the entire network system due to the security issues of the router settings, the following describes how to enhance the security of the Belkin router. 1. Set the password in the backup vro configuration file. Even if the password is stored in encrypted form, the plaintext of the password may still be cracked. Once the password leaks, the network will be insecure. Www.2cto.com
2. added the authentication function. An important feature of router settings is route management and maintenance. Currently, a certain scale of networks use dynamic routing protocols, which are commonly used: when a vro with the same routing protocol and region identifier IS added to the network, the route information table on the network IS learned. However, this method may cause network topology information leakage. It may also disrupt the routing information table that works normally on the network by sending its own routing information table to the network. In severe cases, the entire network may be paralyzed. The solution to this problem is to authenticate the route information exchanged between routers in the network. When the router is configured with an authentication method, it will identify the sender and receiver of the route information.
3. Disable the command to stop viewing diagnostic information: no service tcp-small-servers no service udp-small-servers IV. disable CDP. Part of the configuration information of the Peer router can be found on the basis of the OSI Layer 2 protocol, that is, the link layer: you can use the command no cdp running or no cdp enable to disable important information such as the device platform, operating system version, port, and IP address. 5. Disable the broadcast packet forwarding function www.2cto.com Sumrf D. o. S attacks use vro settings with broadcast forwarding configuration as the reflector, occupying network resources and even causing network paralysis. no ip directed-broadcast should be applied on each port to close the router broadcast package.
6. The IP Address source-route of the packet with the source route label is a global configuration command that allows the router to process the data stream with the source route Option label. After the source route option is enabled, the route specified by the source route information enables the data stream to bypass the default route. This type of packet may bypass the firewall. The command to disable it is as follows: no ip source-route. 7. The command to stop viewing the current user list is: no service finger. 8. Manage HTTP Services provides Web management interfaces. no ip http server can stop HTTP services. If you must use HTTP, you must use the http access-class command of the access list ip address, strictly filter the allowed ip addresses and use the http authentication command to set the authorization limit.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.