Username: Save?
Password:
Home Forum Links Search Login Register*
    News: Welcome to the TechnoWorldInc! Community!
Recent Updates
Instagram adds features t...
by Saniya Abraham
[October 17, 2024, 05:05:06 PM]
Firm hacked after acciden...
by Saniya Abraham
[October 17, 2024, 04:53:18 PM]
US 'click to cancel' rule...
by Saniya Abraham
[October 17, 2024, 04:53:18 PM]
How does WhatsApp make mo...
by Saniya Abraham
[October 17, 2024, 04:53:18 PM]
Social media faces big ch...
by Saniya Abraham
[October 17, 2024, 04:53:18 PM]
Man accused of using bots...
by Saniya Abraham
[September 09, 2024, 12:27:25 PM]
Google abusing ad tech do...
by Saniya Abraham
[September 09, 2024, 12:27:25 PM]
Thieves snatched his phon...
by Saniya Abraham
[September 09, 2024, 12:27:25 PM]
Google's lucrative ad tec...
by Saniya Abraham
[September 09, 2024, 12:27:25 PM]
Secrets of hovering kestr...
by Saniya Abraham
[August 10, 2024, 12:34:30 PM]
Musk shares faked far-rig...
by Saniya Abraham
[August 10, 2024, 12:34:30 PM]
The AI tech aiming to ide...
by Saniya Abraham
[August 10, 2024, 12:34:30 PM]
Delta Airlines hits out a...
by Saniya Abraham
[August 10, 2024, 12:34:30 PM]
Subscriptions
Get Latest Tech Updates For Free!
Resources
   Travelikers
   Funistan
   PrettyGalz
   Techlap
   FreeThemes
   Videsta
   Glamistan
   BachatMela
   GlamGalz
   Techzug
   Vidsage
   Funzug
   WorldHostInc
   Funfani
   FilmyMama
   Uploaded.Tech
   MegaPixelShop
   Netens
   Funotic
   FreeJobsInc
   FilesPark
Participate in the fastest growing Technical Encyclopedia! This website is 100% Free. Please register or login using the login box above if you have already registered. You will need to be logged in to reply, make new topics and to access all the areas. Registration is free! Click Here To Register.
+ Techno World Inc - The Best Technical Encyclopedia Online! » Forum » THE TECHNO CLUB [ TECHNOWORLDINC.COM ] » Techno Articles » Internet
 Configuring Basic Cisco Router Security
Pages: [1]   Go Down
  Print  
Author Topic: Configuring Basic Cisco Router Security  (Read 492 times)
Shawn Tracer
TWI Hero
**********


Karma: 2
Offline Offline

Posts: 16072


View Profile
Configuring Basic Cisco Router Security
« Posted: February 25, 2008, 12:02:09 PM »

Configuring Basic Cisco Router Security
 by: Chris Bryant, CCIE #12933

Network security is a hot topic today, and will only increase in importance in the months and years ahead.

While most of the attention is paid to exterior threats, there are some steps you can take to prevent unwanted Cisco router access from within your organization.

Whether you want to limit what certain users can do and run on your routers, or prevent unauthorized users in your company from getting to config mode in the first place, here are four important yet simple steps you can take to do so.

Encrypt the passwords in your running configuration.

This is a basic Cisco router security command that is often overlooked. It doesn’t do you any good to set passwords for your ISDN connection or Telnet connections if anyone who can see your router’s running configuration can see the passwords. By default, these passwords are displayed in your running config in clear text.

One simple command takes care of that. In global configuration mode, run service password-encryption. This command will encrypt all clear text passwords in your running configuration.

Set a console password.

If I walked into your network room right now, could I sit down and start configuring your Cisco routers?

If so, you need to set a console password. This password is a basic yet important step in limiting router access in your network. Go into line configuration mode with the command “line con 0”, and set a password with the password command.

Limit user capabilities with privilege level commands.

Not everyone who has access to your routers should be able to do anything they want. With careful use of privilege levels, you can limit the commands given users can run on your routers.

Privilege levels can be a little clumsy at first, but with practice you’ll be tying your routers down as tight as you like. Visit www.cisco.com/univercd for documentation on configuring privilege levels.

Configure an “enable secret” password.

It’s not uncommon for me to see a router that has an enable mode password set, but it’s in clear text.

By using “enable secret”, the enable mode password will automatically be encrypted. Remember, if you have an enable password and enable secret password set on the same router, the enable secret password takes precedence.

These four basic steps will help prevent unwanted router access from inside your network. If only preventing problems from outside your network was as simple!

About The Author

Chris Bryant, CCIE (TM) #12933, has been active in the Cisco certification community for years. He has written several books that have helped CCNA candidates around the world achieve the coveted CCNA certification, including several concentrating on binary math conversions and subnetting questions that the average CCNA candidate will need to answer on their CCNA exams.

He is the owner of The Bryant Advantage (http://www.thebryantadvantage.com) where he teaches affordable world-class CCNA courses via the Internet, and sells his popular Cisco certification books. He’s proud to have helped CCNA candidates around the world achieve their career goals. Mr. Bryant’s books and courses are sold on his site, on eBay, and on several other major Cisco certification sites.

[email protected]

Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Copyright © 2006-2023 TechnoWorldInc.com. All Rights Reserved. Privacy Policy | Disclaimer
Powered by SMF 1.1.4 | SMF © 2006-2007, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks
Page created in 0.179 seconds with 24 queries.