Professional Documents
Culture Documents
• Perimeter
DRAFT May 2003. All rights reserved.
•Low-risk
DRAFT May 2003. All rights reserved.
router(config-line)#
login
• Enables password checking at login for VTY (Telnet)
sessions
router(config-line)#
password password
• Sets the user-level password to password
router(config-line)#
login
• Enables password checking at login for Aux connections
router(config-line)#
password password
• Sets the user-level password to password
router(config-line)#
exec-timeout minutes [seconds]
DRAFT May 2003. All rights reserved.
router(config)#
DRAFT May 2003. All rights reserved.
Austin4(config)# no ip classless
Router(config)#
DRAFT May 2003. All rights reserved.
Attack Austin1
DRAFT May 2003. All rights reserved.
Router(config-if)#
shutdown
Austin1(config)# interface e0/2
Austin1(config-if)# shutdown
Internet
UDP
• HTTP-based authentication.
DRAFT May 2003. All rights reserved.
TCP
Internet
UDP
Message text
Syslog server
(destination host)
Router(config)#
logging [host-name | ip-address]
DRAFT May 2003. All rights reserved.
Modem
• Troubleshooting
• Fault analysis
• Security incident tracking
© 2003, Cisco Systems, Inc. All rights reserved. FNS 1.0
NTP
• NTP is used to synchronize the clocks of various devices across a
network. It is critical for digital certificates, and for correct interpretation of
events within Syslog data. NTP uses port 123 for both UDP and TCP
DRAFT May 2003. All rights reserved.
connections.
TCP Port 22
SSH Client
Router(config)#
hostname host-name
DRAFT May 2003. All rights reserved.
Router#
ssh –l username –c encryption destination address
DRAFT May 2003. All rights reserved.
Router# ssh ?
-c Select encryption algorithm
-l Log in using this user name
-o Specify options
-p Connect to this port
Router# ssh –l cisco –c 3des 172.30.1.2 –p 2222