Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Router’s security

Status
Not open for further replies.
charlesbt

charlesbt

IS-IT--Management
Nov 14, 2008
2
GB


We want to enhanced our Router’s security, in a book, we have it recommends that we disabled following services



ip directed-broadcast

ip mask-reply

ip unreachable

ip proxy-arp

ip redirect

I would like to know why we need to disabled these protocol & services.

Also would like more info the command, in particular and effect of applying above commands.


 
Sort by date Sort by votes
Does the book not explain it?
There are man in the middle attacks, rerouting attacks, ip spoofing---to name a few---that proxy arp, route cache, redirects, directed broadcasts, etc. all allow to happen. You also want to disable many other services (no tcp-small-servers, no udp-small-servers, etc.). I would suggest you purchase a CCSP Ciscp Press/Todd Lammle book for more details.
The rest is too much to discuss within the proper scope of this forum.

Burt
Forum Admin...lol...j/k
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Telecomp9434
  • Locked
  • Question
Port Security and Mitel
Replies
9
Views
198
ADB100
ADB100
tdmneil
  • Locked
  • Question
My Lab router... Security Ideas?
Replies
0
Views
81
tdmneil
tdmneil
veracious
  • Locked
  • Question
Cisco Catalyst 3750G port-security
Replies
3
Views
48
VinceWhirlwind
VinceWhirlwind
imbadatthis
  • Locked
  • Question
security crash course 1
Replies
9
Views
81
VinceWhirlwind
VinceWhirlwind
imbadatthis
  • Locked
  • Question
zone based security
Replies
6
Views
81
brianinms
brianinms

Part and Inventory Search

Sponsor

Back
Top