Cisco router security configuration
Ξ June 27th, 2007 | → 0 Comments | ∇ Geek |
The Dynamips Cisco router emulator is a great tool to practice and test Cisco IOS configurations. And part of the IOS configuration process is the security configuration. Cisco offers a document on their website called Improving Security on Cisco Routers. Robert Thomas has written a “Secure IOS Template” to help provide the Cisco router administrator with a place to start. George Jones has written a tool, NCAT, that will validate Cisco router configuration against a template to ensure that any router configuration follows the policies in the template, which allows an administrator to check many routers more quickly. An organization can modify the default template for their particular security configuration policies, but the default template is enough to check for good practices settings for any configuration. You can find NCAT through it’s development web page at ncat.sourceforge.net. The Center for Internet Security has tools to benchmark a routers security configuration and many other systems too, including Windows and Linux/Unix, Cisco PIX, and some applications. It’s a good resource.
