Content Inside :
This paper is the first in a three-part series of white papers, each of which focuses on a functional area of securing your network. The three papers work together to create a complete picture of how to configure your network appliances for complete corporate security. It will discuss a starting point for network security, suggested technology types, ideal points for securing your network using a layered approach, and secure ways to manage your new or existing network. This first paper in the series introduces concepts to get started on network security and begin the process of securing your network at the switch level. Security Lifecycle: an Understanding and Review Take a controlled, metered approach when installing any desktop/network operating system, application, or appliance. By taking a metered approach, you ensure consistent installation and hardening of each system. The following recommendations for a secure installation come directly from Cisco Systems. Step #1: Secure Install Install each new operating system, application, and appliance in as secure a manner as possible. This may require you to review the documentation as completely as possible, which I know we all have time to do. Also, consider staying away from default installations or installation wizards, as they often create the most simple of configurations, which are not always the most secure. Step #2: Monitor Once the new system has been installed, take the time to review the installation logs, operational logs, and behavior to make sure the system is operating as securely as possible. IP Verify is a wonderfully simple security feature that does not get used as much as it should. For every packet that enters an interface where this feature has been enabled, the router will check the source address of the packet against the routing table. If the source address, per the routing table, is accessible (by checking backwards = reverse path) via the ingress interface, then the packet is permitted into that interface. If not, the source address is thought to be a spoofed address, and the packet is dropped.
Download Part 1 | Download Part 2
Tags : installation wizards, network appliances, network operating system, security lifecycle, cisco systems, default installations, switch level, security setup, desktop network, securing your network, configuration guide, source address, functional area, security feature, system application
If you see unrelated pdf files with the description or copyrighted material published, please report to us, we'll correct/delete it it as soon as possible.NONE OF THOSE MATERIALS ARE HOSTED IN THIS SERVER NOR UPLOADED BY ME IN SOMEONE'S SERVERS. Read our DISCLAIMER for more detail.
We are neither affiliated with authors and brands nor responsible for its content and change of content.
Information contained herein is provided "as is" without warranty of any kind, either expressed or implied, including any warranty of merchantability or fitness for a particular purpose. In no event shall ANYONE be held liable for any loss of profit, special, incidental, consequential, or other similar claims.