Re: Lab BluePrint:"Other security features" what to prepare from Bryan Bartik on 2009-04-04 (Ccielab archives 04/2009)

From: Bryan Bartik <bbartik_at_ipexpert.com>
Date: Sat, 4 Apr 2009 12:00:01 -0600

Both topics are explained the Security Configuration guide in the "Secure
Infrastructure" section

IP Source Tracker helps identify DoS attacks:

http://www.cisco.com/en/US/docs/ios/security/configuration/guide/sec_ip_srce_trackr_ps6350_TSD_Products_Configuration_Guide_Chapter.html

IP Traffic Export helps in monitoring traffic:

http://www.cisco.com/en/US/docs/ios/security/configuration/guide/sec_ip_traff_export_ps6350_TSD_Products_Configuration_Guide_Chapter.html

Good luck,

Bryan Bartik
CCIE #23707, CCNP
Sr. Support Engineer - IPexpert, Inc.
URL: http://www.IPexpert.com

On Sat, Apr 4, 2009 at 10:54 AM, Edouard Zorrilla <ezorrilla_at_tsf.com.pe>wrote:

> Excuse me, what do you mean with " - IP Traffic Export " ??
>
> Thanks a lot.
>
> Regards
>
> ----- Original Message ----- From: "Ruhann" <groupstudy_at_ru.co.za>
> To: "Vibeesh S" <vibselva_at_gmail.com>
> Cc: "Cisco certification" <ccielab_at_groupstudy.com>
> Sent: Saturday, April 04, 2009 9:55 AM
> Subject: Re: Lab BluePrint:"Other security features" what to prepare
>
>
> this is what my notes cover regarding security :)
>>
>> - Common Port & Protocol Numbers
>> - Standard Access-Lists
>> - Extended Access-Lists
>> + Advanced Ext-ACL
>> > as a prefix-list
>> > binary voodoo ACL's, (as Scott Moris calls it)
>> + Options
>> + ACL Logging
>> - Time Based Access-Lists
>> - Dynamic Access-Lists
>> - Reflexive Access-Lists
>> - CBAC
>> - Security Compliance RFC's
>> + RFC 1918
>> + RFC 3330 (more for SP)
>> + RFC 2827
>> - TCP Intercept
>> - IP Inspect
>> - IP Source Tracking
>> - IP Traffic Export
>> - Disabling Services
>> + Source Routing
>> + Proxy ARP
>> + IP Options
>> + CDP
>> + IP Unreachable
>> - Local Authentication
>> - Local Authorization
>> - Access-Class
>> - URPF
>> Hth
>> On Sat, Apr 4, 2009 at 4:17 PM, Vibeesh S <vibselva_at_gmail.com> wrote:
>>
>> Hi Experts,
>>>
>>> I know cisco can throw anything at us, but from a preparation point of
>>> view
>>> any pointers on what areas to work on for the "Other security features"
>>> that
>>> is mentioned in the lab blueprint would be great.
>>>
>>> Thanks,
>>> Vibs
>>>
>>>
>>> Blogs and organic groups at http://www.ccie.net
>>>
>>> _______________________________________________________________________
>>> Subscription information may be found at:
>>> http://www.groupstudy.com/list/CCIELab.html
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>
>> --
>> <ruhann>
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>

--
Blogs and organic groups at http://www.ccie.net

Received on Sat Apr 04 2009 - 12:00:01 ART

This archive was generated by hypermail 2.2.0 : Mon May 04 2009 - 07:39:11 ART