Google
Useful Links: ____ Article Search -___ Link Parters ___- Ebook Library___- Product Search

place1holder

.
New Articles
Ebook Library
Link Exchange
Advertising Space
Computer Directory
Join Our Newsletter
Name:
Email:


You will recieve a weekly email that contains new articles, useful product recommendations & more! [Privacy]


place2holder



Further
Reading ...
The 2 Headed Dragon: Let Others Publish Your Material And Keep Your Site Unique
See why you should have 2 or 3 versions of your articles, One For your Web Page and a 2nd or 3rd for public distribution. After you have read this article you will learn a simple method to manage your article versions and 7 different ways to change...

World Information System
I think somebody should save entire knowledge of this world to the space out side our world, or some place that safe. If something happen to our world that might be flood from the ocean or something we don’t know, so survival still have...

Pay Per Click - How To Optmize Your Landing Page
A page optimized for your Pay Per Click campaigns can increase your sales or desired action by 400%. I've witnessed it myself. I'm going to reveal some very exciting techniques and tactics in this article that will explode your ROI by showing you...

The Dark Side Of Blogs
America Online (AOL) announced recently they will pay as much as 25 million dollars for Weblogs, Inc. (www.weblogsinc.com) in a move to expand their reach even further into the consumer market. Blogs, also know as weblogs, enable individuals...

 

Configuring Basic Cisco Router Security
Written By:
Chris Bryant, CCIE #12933
Network security is a hot topic today, and will only increase in importance in the months and years ahead.

While most of the attention is paid to exterior threats, there are some steps you can take to prevent unwanted Cisco router access from within your organization.

Whether you want to limit what certain users can do and run on your routers, or prevent unauthorized users in your company from getting to config mode in the first place, here are four important yet simple steps you can take to do so.

Encrypt the passwords in your running configuration.

This is a basic Cisco router security command that is often overlooked. It doesn't do you any good to set passwords for your ISDN connection or Telnet connections if anyone who can see your router's running configuration can see the passwords. By default, these passwords are displayed in your running config in clear text.

One simple command takes care of that. In global configuration mode, run service password-encryption. This command will encrypt all clear text passwords in your running configuration.

Set a console password.

If I walked into your network room right now, could I sit down and start configuring your Cisco routers?

If so, you need to set a console password. This password is a basic yet important step in limiting router access in your network. Go into line configuration mode with the command "line con 0", and set a - continued below ...




continued ...
password with the password command.

Limit user capabilities with privilege level commands.

Not everyone who has access to your routers should be able to do anything they want. With careful use of privilege levels, you can limit the commands given users can run on your routers.

Privilege levels can be a little clumsy at first, but with practice you'll be tying your routers down as tight as you like. Visit www.cisco.com/univercd for documentation on configuring privilege levels.

Configure an "enable secret" password.

It's not uncommon for me to see a router that has an enable mode password set, but it's in clear text.

By using "enable secret", the enable mode password will automatically be encrypted. Remember, if you have an enable password and enable secret password set on the same router, the enable secret password takes precedence.

These four basic steps will help prevent unwanted router access from inside your network. If only preventing problems from outside your network was as simple!
About the Author

Chris Bryant, CCIE #12933, is the owner of The Bryant Advantage (http://www.thebryantadvantage.com), home of free CCNA and CCNP tutorials! For my FREE "How To Pass The CCNA" or "CCNP" ebook, write to chris@thebryantadvantage.com !

_Additional Resources ...








Microsoft Navision and Crystal Reports - An Overview
Microsoft Business Solutions – Navision is an integrated solution for small and midsize companies looking to expand their business operations without much interruption to its existing processes. Microsoft Navision enables businesses to alter as...

Tech Support email Writing Exposed!
Tech Support email Writing Exposed! copyright(c)2004 by Diane M. Hoffmann For a long time, I have been noticing the --sometimes appalling-- way that people write emails. Too many do not bother to check their writing before sending out their...

Network Marketing: The Best Business Model for Success
Network Marketing: The Best Business Model for Success Network Marketing is the most outstanding business opportunity because it allows the average person to achieve extraordinary results with the power of leverage: leverage of time, money and...


This website is powered by Hostland ...