About Author

Cisco Switch Security Configuration

by ShahedFebruary 15, 2011October 30, 20150

Cisco Switch Security Configuration For security reason one password is used for the enable password and the other will later be assigned to the console port. [boxads] SWITCH(config)#enable secret [password] SWITCH(config)#username admin password [password] A password should be required to access the console line. Even the basic user EXEC mode can provide significant information to a malicious user. In addition, the VTY lines must have a password before users can access the switch remotely.

by ShahedFebruary 15, 2011October 29, 20150

Network Security Attacks and Defence Today I will discuss about Network Security Attacks and Defence. Network security involves the authorization of access to data in a network, which is controlled by the network administrator. [boxads] Users choose or are assigned an ID and password or other authenticating information that allows them access to information and programs within their authority. Network security covers a variety of computer networks, both public and private, that are used in everyday jobs conducting transactions and communications among businesses, government agencies and individuals. Networks can be private, such as within a company, and others which might …

by ShahedFebruary 15, 2011October 30, 20150

Cisco Switch AAA Security Today i will discuss about Cisco Switch AAA Security. Typically, remote administrator access to a Cisco switch requires a password but no username. There is no accountability for which administrator has connected to the switch. Also, no mechanism is set by default for what an administrator is allowed to do. [boxads] Cisco provides three security mechanisms called Authentication, Authorization and Accounting (AAA) that can address these vulnerabilities. Configure AAA on a switch in conjunction with a security server. Use of AAA with a security server provides the security mechanisms described below. Authentication– This mechanism identifies remote …

by ShahedFebruary 15, 2011October 30, 20150

Access Control Lists Security Today I will discuss about Access Control Lists Security issue. A switch with either no access control list (ACL) or a permissive ACL applied to its interfaces allows broad access for TCP/IP connections (e.g., FTP, telnet, DNS, HTTP, SNMP, ICMP) through the switch to any system (e.g., critical server) on the protected network. [boxads] In preparation for implementing ACLs, categorize systems attached to the switches into groups that use the same network services. Grouping systems this way helps reduce the size and complexity of associated ACLs. ACLs can permit or deny each packet based on the …

by ShahedFebruary 14, 2011October 30, 20150

Cisco Network Security Services Today I will discuss about Cisco Network Security issue. Switches can have a number of network services enabled. Many of these services are typically not necessary for a switch’s normal operation; however if these services are enabled then the switch may be susceptible to information gathering or to network attacks. The characteristics or the poor configuration of the network services on a switch can lead to compromise. Most of these services use one of the following transport mechanisms at Layer 4 of the OSI RM: Transmission Control Protocol (TCP) and User Datagram Protocol (UDP). If possible, …

by ShahedFebruary 13, 2011October 30, 20150

Cisco Switch Port Security Configuration Today I will discuss about Cisco Switch Port Security issue. Layer 2 interfaces on a Cisco switch are referred to as ports. A switch that does not provide port security allows an attacker to attach a system to an unused, enabled port and to perform information gathering or attacks. A switch can be configured to act like a hub, which means that every system connected to the switch can potentially view all network traffic passing through the switch to all systems connected to the switch. Thus, an attacker could collect traffic that contains usernames, passwords …