Security Features on Switches
Securing Layer 2
Port-Level Traffic Controls
Private VLAN (PVLAN)
Access Lists on Switches
Spanning Tree Protocol Features
Dynamic Host Configuration Protocol (DHCP) Snooping
IP Source Guard
Dynamic ARP Inspection (DAI)
Advanced Integrated Security Features on High-End Catalyst Switches
Control Plane Policing (CoPP) Feature
CPU Rate Limiters
Layer 2 Security Best Practices
Summary
References
Chapter 5. Cisco IOS Firewall
Router-Based Firewall Solution
Context-Based Access Control (CBAC)
CBAC Functions
How CBAC Works
CBAC-Supported Protocols
Configuring CBAC
IOS Firewall Advanced Features
Zone-Based Policy Firewall (ZFW)
Summary
References
Chapter 6. Cisco Firewalls: Appliance and Module
Firewalls Overview
Hardware Versus Software Firewalls
Cisco PIX 500 Series Security Appliances
Cisco ASA 5500 Series Adaptive Security Appliances
Cisco Firewall Services Module (FWSM)
Firewall Appliance Software for PIX 500 and ASA 5500
Firewall Appliance OS Software
Firewall Modes
Stateful Inspection
Application Layer Protocol Inspection
Adaptive Security Algorithm Operation
Security Context
Security Levels
Redundant Interface
IP Routing
Network Address Translation (NAT)
Controlling Traffic Flow and Network Access
Modular Policy Framework (MPF)
Cisco AnyConnect VPN Client
Redundancy and Load Balancing
Firewall "Module" Software for Firewall Services Module (FWSM)
Firewall Module OS Software
Network Traffic Through the Firewall Module
Installing the FWSM
Router/MSFC Placement
Configuring the FWSM
Summary
References
Chapter 7.
Pages:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25