Thursday 1 November 2012

Securing Borderless Networks + NFP

Here's a few more revision points,this time with relation to securing borderless networks:

Borderless Network Components:
Borderless End Zone
Borderless Datacenter
Borderless Internet
Policy Management

SecureX and context aware security:
Context awareness
AnyConnect client
TrustSec
Security Intelligence Operations

Protecting the planes
Management:
AAA, NTP, SSH, SSL, Protected Syslog, SNMPv3, Parser views

Control:
CoPP, CPPr, Authenticated routing protocol updates

Data:
ACLs, Private VLANs, STP guards, IOS IPS, Zone Based Firewalls (IOS)

Management Plane Best Practices:
Strong Passwords, User authentication and AAA, RBAC, encrypted management protocols, logging, NTP, Secure system files





No comments:

Post a Comment