SP Lab: SP Security
Management plane/Device security Use Tools or protocols to protect device like router, switch. Disable unneeded service, disable CDP, set NTP, disable IP unreachable overload, login security, SNMP authentication, etc.
Control plane security
Protect routing protocols. Routing protocol authentication, AS Ingress and Egress Route Filtering, deny Documenting Special Use Addresses, etc.
Validate packets going through the router. BCP 38 Packet Filtering, uRPF, etc.
© 2008 Cisco Systems, Inc. All rights reserved.