Implementing Cisco IOS Network Security (IINS 640-554) by Catherine Paquet

By Catherine Paquet

Imposing Cisco IOS community protection (IINS) starting place studying consultant, moment variation, is a Cisco-authorized, self-paced studying software for CCNA® protection 640-554 origin studying. This publication provide you with the information had to safe Cisco® networks. by means of interpreting this ebook, you'll achieve an intensive realizing of ways to improve a safety infrastructure, realize threats and vulnerabilities to networks, and mitigate safeguard threats.

This ebook makes a speciality of utilizing Cisco IOS routers to guard the community via capitalizing on their complicated beneficial properties as a fringe router, firewall, intrusion prevention approach, and site-to-site VPN gadget. The booklet additionally covers using Cisco Catalyst switches for simple community safety, the Cisco safe entry regulate procedure (ACS), and the Cisco Adaptive protection equipment (ASA). You find out how to practice simple initiatives to safe a small department workplace community utilizing Cisco IOS safety features on hand via web-based GUIs (Cisco Configuration specialist) and the CLI
on Cisco routers, switches, and ASAs.

Whether you're getting ready for CCNA safety certification or just are looking to achieve a greater knowing of Cisco IOS defense basics, you are going to enjoy the details supplied during this book.

Implementing Cisco IOS community protection (IINS) beginning studying advisor, moment version, is a part of a advised studying direction from Cisco that incorporates simulation and hands-on education from approved Cisco studying companions and self-study items from Cisco Press. to determine extra approximately instructor-led education, e-learning, and hands-on guideline provided by way of licensed Cisco studying companions around the world, please stopover at www.cisco.com/go/authorizedtraining.

-- enhance a entire community defense coverage to counter threats opposed to details security
-- safe without boundary lines networks
-- find out how to use Cisco IOS community beginning safety (NFP) and Cisco Configuration expert (CCP)
-- Securely enforce the administration and reporting positive factors of Cisco IOS devices
-- set up Cisco Catalyst swap safety features
-- comprehend IPv6 defense features
-- Plan possibility regulate strategies
-- clear out site visitors with entry regulate lists
-- Configure ASA and Cisco IOS zone-based firewalls
-- enforce intrusion prevention structures (IPS) and community tackle translation (NAT)
-- safe connectivity with site-to-site IPsec VPNs and distant entry VPNs

Show description

Read or Download Implementing Cisco IOS Network Security (IINS 640-554) Foundation Learning Guide (2nd Edition) PDF

Best security books

Simple Steps to Data Encryption: A Practical Guide to Secure Computing

Every body desires privateness and safeguard on-line, whatever that the majority computing device clients have kind of given up on so far as their own information is worried. there is not any scarcity of fine encryption software program, and no scarcity of books, articles and essays that purport to be approximately easy methods to use it. but there's priceless little for usual clients who wish simply enough information regarding encryption to take advantage of it thoroughly and securely and appropriately--WITHOUT having to turn into specialists in cryptography.

Comprehensive Security in Asia: Views from Asia and the West on a Changing Security Environment

This is often an exam of "Comprehensive defense" as a coverage that is going past the necessities of army defence opposed to a selected "enemy" to emphasize the necessity to bear in mind different points very important to nationwide balance: nutrients, strength, atmosphere, verbal exchange and social safeguard.

Protecting Human Security in Africa

Conserving Human protection in Africa discusses essentially the most effective threats to human defense in Africa. It bargains specifically with these threats to the safety of African humans that are least understood or explored. In issues various from corruption, the proliferation of small palms and light-weight guns, nutrition safety, the devastation of inner displacement in Africa, the hyperlink among traditional assets and human safeguard, to the issues of compelled labour, threatsto women's defense, and environmental safety, the publication examines the felony and coverage demanding situations of defending human safeguard in Africa.

Extra info for Implementing Cisco IOS Network Security (IINS 640-554) Foundation Learning Guide (2nd Edition)

Example text

As each new system is hacked, the attacker performs the steps that were outlined previously to gather additional system and password information. Hackers try to scan and exploit a single system or a whole set of networks and usually automate the whole process. In addition, hackers will cover their tracks either by deleting log entries or falsifying them. Thinking Outside the Box In 2005, David Sternberg hacked the Postal Bank in Israel by physically breaking into one of the bank’s branches in Haifa and connecting a wireless access point in the branch’s IT infrastructure.

Attackers are also motivated by government or industrial espionage. The Stuxnet worm, whose earliest versions appear to date to 2009, is an example. This worm differs from its malware “cousins” in that it has a specific, damaging goal: to traverse industrial control systems, such as supervisory control and data acquisition (SCADA) systems, so that it can reprogram the programmable logic controllers, possibly disrupting industrial operations. This worm was not created to gather credit card numbers to sell off to the highest bidder, or to sell fake pharmaceuticals.

In the commercial world, connectivity is no longer optional, and the possible risks of connectivity do not outweigh the benefits. Therefore, it is very important to enable networks to support security services that provide adequate protection to companies that conduct business in a relatively open environment. This section explains the breadth of assumptions and challenges to establish and maintain a secure network environment. Basic Security Assumptions Several new assumptions have to be made about computer networks because of their evolution over the years: • Modern networks are very large, very interconnected, and run both ubiquitous protocols (such as IP) and proprietary protocols.

Download PDF sample

Rated 4.23 of 5 – based on 48 votes