Here's a few more revision points,this time with relation to securing borderless networks:
Borderless Network Components:
Borderless End Zone
Borderless Datacenter
Borderless Internet
Policy Management
SecureX and context aware security:
Context awareness
AnyConnect client
TrustSec
Security Intelligence Operations
Protecting the planes
Management:
AAA, NTP, SSH, SSL, Protected Syslog, SNMPv3, Parser views
Control:
CoPP, CPPr, Authenticated routing protocol updates
Data:
ACLs, Private VLANs, STP guards, IOS IPS, Zone Based Firewalls (IOS)
Management Plane Best Practices:
Strong Passwords, User authentication and AAA, RBAC, encrypted management protocols, logging, NTP, Secure system files
No comments:
Post a Comment