As a network administrator, auditor or architect, you know the importance of securing your network and finding security solutions you can implement quickly. This succinct book departs from other security literature by focusing exclusively on ways to secure Cisco routers, rather than the entire network. The rational is simple: If the router protecting a network is exposed to hackers, then so is the network behind it. Hardening Cisco Routers is a reference for protecting the protectors. Included are the following topics:

• The importance of router security and where routers fit into an overall security plan

• Different router configurations for various versions of Cisco?s IOS

• Standard ways to access a Cisco router and the security implications of each

• Password and privilege levels in Cisco routers

• Authentication, Authorization, and Accounting (AAA) control

• Router warning banner use (as recommended by the FBI)

• Unnecessary protocols and services commonly run on Cisco routers

• SNMP security

• Anti-spoofing

• Protocol security for RIP, OSPF, EIGRP, NTP, and BGP

• Logging violations

• Incident response

• Physical security

Written by Thomas Akin, an experienced Certified Information Systems Security Professional (CISSP) and Certified Cisco Academic Instructor (CCAI), the book is well organized, emphasizing practicality and a hands-on approach. At the end of each chapter, Akin includes a Checklist that summarizes the hardening techniques discussed in the chapter. The Checklists help you double-check the configurations you have been instructed to make, and serve as quick references for future security procedures. Concise and to the point, Hardening Cisco Routers supplies you with all the tools necessary to turn a potential vulnerability into a strength. In an area that is otherwise poorly documented, this is the one book that will help you make your Cisco routers rock solid.

Amazon.com® Reader Reviews (Ranked by Helpfulness)

Average Amazon.com® Rating:  Based on 15 Ratings

Excellent filler to your library, maybe not essential though - 2005-08-22
Reviewer Rating:
No nonsense. No mucking around. Here's the problem, here's the solution. Have to say though, you probably wont find anything new to you inside this book; but its dead handy for checking you've covered most of your bases (then you'll write a common config script and probably never look at it again!! :) )

A little thin - 2004-06-24
Reviewer Rating:
It's nice to have all of this information in one place. A lot of it is available elesewhere but not all. The checklists are nice. But there's not so much to it. It doesn't cover any common hacks or vulnerabilities and is quite redundant to fill out the pages.

Practical & useful - 2008-10-13
Reviewer Rating:
Even if you do not utilise all of the suggestions its handy to have this quick reference manual close by.

Great Thing in a Small Package - 2007-08-13
Reviewer Rating:
Read it leisurely on Monday & Tuesday night. Write out your action plans & change controls on Wednesday & Thursday. Have a more secure network on Friday.

I bought this book with the Cisco Cookbook, and found this to be one of the most important books in a network admin's library. This is the security book that doesn't get mired down in endless pages of white papers. It simply points out major security flaws and holes, and why they should be covered.

What good is an Access List if you don't log what is or isn't stopping?
What good are your logs if you don't have timestamps backed up by NTP time sources?
What good is a complex password if 10 admins know it, and no one has individual logins?

The problems and solutions are quickly addressed with enough information to explain to your boss why this needs to be done. Then use the Cisco Cookbook or other guide to fine-tune your own solution that fits your needs.

Hardening Cisco Router - 2006-07-20
Reviewer Rating:
If you are new with cisco router's security I could suggest this book. However if you are advanced user, it would be wasted money.Overall I did not like the book...

Browse Similar Topics

Top Level Categories:
Networking
Security

Sub-Categories:
Networking > Cisco
Networking > Routing
Networking > Security
Security > Networking