In the same way
that you implement access control lists (ACL) for upper-layer security, you must establish
a policy and con?¬?gure appropriate features to protect against potential malicious acts while
maintaining daily network operations.
Network security vulnerabilities include loss of privacy, data theft, impersonation, and loss
of data integrity. You should take basic security measures on every network to mitigate
adverse effects of user negligence or acts of malicious intent.
Recommended practices dictate that you should follow these general steps whenever
placing new equipment in service:
Step 1 Consider or establish organizational security policies.
Step 2 Secure switch devices by securing switch access and switch protocols
and mitigating compromises launched through a switch.
You should consider the policies of an organization when determining what level and type
of security you want to implement. You must balance the goal of reasonable network
Access Core and Distribution
Submodule
Lack of Security
Edge and DMZ
Firewalls Routers
Devices
Switches
68 Chapter 2: Medium-Sized Switched Network Construction
security against the administrative overhead that is clearly associated with extremely
restrictive security measures.
Pages:
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122