Regular marked price: $24.95Discount Price: $16.47
Cost Savings: $8.48 (34%)Price fluctuation possible.
How soon does it ship: Normal ship time within one day
Shipping? Absolutely FREE if you qualify for Super Saver Shipping.
Type of bind: Paperback
Dewey Decimal Number: 005.8
EAN num: 9780596001667
ISBN number: 0596001665
Label: O'Reilly Media, Ltd.
Manufacturer: O'Reilly Media, Ltd.
Quantity: 1
Page Count: 190
Printing Date: 2002-02
Publishing house: O'Reilly Media, Ltd.
Sale Popularity Level: 117105
Studio: O'Reilly Media, Ltd.
Other books you might be interested in perusing:
Editor's Notes and Comments:
Product Description:
As a network administrator, auditor or architect, you know the importance of securing your network and finding security solutions you can implement quickly. This succinct book departs from other security literature by focusing exclusively on ways to secure Cisco routers, rather than the entire network. The rational is simple: If the router protecting a network is exposed to hackers, then so is the network behind it. 'Hardening Cisco Routers' is a reference for protecting the protectors. Included are the following topics:
The importance of router security and where routers fit into an overall security plan
Different router configurations for various versions of Cisco's IOS
Standard ways to acess a Cisco router and the security implications of each
Password and privilege levels in Cisco routers
Authentication, Authorization, and Accounting (AAA) control
Router warning banner use (as recommended by the FBI)
Unnecessary protocols and services commonly run on Cisco routers
SNMP security
Anti-spoofing
Protocol security for RIP, OSPF, EIGRP, NTP, and BGP
Logging violations
Incident response
Physical security
Written by Thomas Akin, an experienced Certified Information Systems Security Professional (CISSP) and Certified Cisco Academic Instructor (CCAI), the book is well organized, emphasizing practicality and a hands-on approach. At the end of each chapter, Akin includes a Checklist that summarizes the hardening techniques discussed in the chapter. The Checklists help you double-check the configurations you have been instructed to make, and serve as quick references for future security procedures.
Concise and to the point, 'HardeningCisco Routers' supplies you with all the tools necessary to turn a potential vulnerability into a strength. In an area that is otherwise poorly documented, this is the one book that will help you make your Cisco routers rock solid.
Amazon.com Review:
To harden a router is to render it more heavily defended and more difficult to attack. Because routers (by definition) serve as points of entry into your network, it makes sense to devote extra effort to their security. Hardening Cisco Routers shows how to make adjustments to the configurations of routers from Cisco Systems to improve their resistance to attack, particularly external attack. This is essentially a book of specialized Internetwork Operating System (IOS) commands, as well as explanations of their behavior. It'll appeal to the router administrator--employed either by an organization's internal network staff, an outside consultancy, or a service provider--who wants to know which IOS commands he or she should add to routers' configuration files to tighten their security without a lot of hassle.
The great thing about this book is that you can approach it in either of two ways. If you just want to clamp down on your routers' security weaknesses as soon as possible, you can begin with the checklists at the end of each chapter (each of which focuses on a particular area, like SMTP) or the big one in an appendix, which is comprehensive. These checklists include both 'how' and 'why' information, as exemplified by 'Disable ICMP broadcasts with the no ip directed-broadcast command.' If you want more information on the big picture, or want to prepare for a specific kind of attack, read the individual chapters for detailed advice on how to set IOS to behave as you want. --David Wall
Topics covered: Internetwork Operating System (IOS) commands you can use to protect Cisco Systems routers from a variety of attacks. Specialized sections deal with security assessment, auditing, acess control, privileges, optional services, and the legal importance of your login banners' contents.
User popularity level:
Rated by buyers 
-
Read it leisurely on Tuesday & Tuesday night. Write out your action plans & change controls on Thursday & Thursday. Have a more secure network on Friday.
I bought this book with the Cisco Cookbook, and found this to be one of the most important books in a network admin's library. This is the security book that doesn't get mired down in endless pages of white papers. It simply points out major security flaws and holes, and why they should be covered.
What good is an Acess List if you don't log what is or isn't stopping?
What good are your logs if you don't have timestamps backed up by NTP time sources?
What good is a complex password if 10 admins know it, and no one has individual logins?
The problems and solutions are quickly addressed with enough information to explain to your boss why this needs to be done. Then use the Cisco Cookbook or other guide to fine-tune your own solution that fits your needs.
Rated by buyers 
-
If you are new with cisco router's security I could suggest this book. However if you are advanced user, it would be wasted money.Overall I did not like the book...
Rated by buyers -
No nonsense. No mucking around. Here's the problem, here's the solution. Have to say though, you probably wont find anything new to you inside this book; but its dead handy for checking you've covered most of your bases (then you'll write a common config script and probably never look at it again!! :) )
Rated by buyers 
-
It's nice to have all of this information in one place. A lot of it is available elesewhere but not all. The checklists are nice. But there's not so much to it. It doesn't cover any common hacks or vulnerabilities and is quite redundant to fill out the pages.
Rated by buyers -
Intended audiences: network administrators, security advisors/auditors, system architects.
This book is, pound for pound, among the best in my technical library.
Having almost no previous knowledge in router hardening (although I was aware of the basics of Cisco routers) a few hours with this book enabled me to review the "hardening" plan submitted by a highly paid security consultant, and provide useful comments on improving the proposal.
No doubt this book is the beginning, not the end, of my education on this subject. But this fine book got me off to a quick and productive start, which is high praise when compared to what could be said about so many other technical titles. Highly recommended.
Find other books like this one:
