Recommended
Recommended
More Related Content
What's hot
What's hot (20)
Similar to Cisco Ios Suneet
Similar to Cisco Ios Suneet (20)
Cisco Ios Suneet
- 1. CISCO IOS HARDENING Presented By :- Shweta Mehta Suneet Malik
- 6. Data Plane
- 7. Each plane provide different functionality
- 10. Use strong password and secure them strongly.
- 11. Use the login password retry lockout feature.
- 12. Monitor the memory and CPU load of network devices.
- 16. Permit tcp host 192.168.1.2 eq 179 host 192.168.1.1
- 17. Permit tcp host 192.168.1.3 any eq 22
- 18. Deny ip any 192.168.1.0 0.255.255.255
- 19. Use Authentication ,Authorization and accounting (AAA).
- 20. Fortify SNMP.
- 21. Utilize logging best practices.
- 23. CONTROL PLANE
- 28. NEXT STEP ???? DATA PLANE
- 29. DATA PLANE
- 31. Use IP options selective drop feature.
- 32. Disable IP source routing.
- 35. Unicast reverse path forwarding(URPF).
- 36. IP source guard.
- 37. Dynamic ARP Inspection (DAI).
- 38. Port security.
- 40. Prevent the origination of packets containing spoofed source addrerss.
- 42. Minimize CPU intensive features such as ACL logging and IP fragmentation.
- 44. Cisco IOS netFlow.
- 46. Use VLAN maps and port ACLs
- 48. THANK YOU…
Editor's Notes
- Management plane is the plane that receives and send the traffic that is used to access, configure and manage a device as well as monitor its operation and network on which it is deployed .The management plane is made up of protocols that support operational need of the network .The management plane includes interactive access to network devices using secure shell(SSH) or Telnet statistics collection using SNMP.
- Control plane functions consist of protocols and processes Control Plane consist of Protocols.