Auxiliary Port
Some devices have an auxiliary (aux) port available for remote administration via a dialup modem connection. In most cases, aux port should be disabled by using the no exec command under line aux 0 .
A modem should be connected to the aux port with no alternatives for backup or remote access methods to the device only absolutely necessary. Through a simple war-dialing technique, an intruder can find a rogue modem; hence it is necessary to
apply authentication for access control to the aux port. As discussed earlier, all connections to the device (including aux port)
must require authentication (using individual user accounts) for access, either using local authentication or via AAA servers TACACS+ or RADIUS.
For enhanced security, IOS callback features can be implemented. Refer to Cisco documentation for information about connecting
modems on aux ports and configuring callback features.
Banner Messages
Banners are informational messages that can be displayed to users who connect to the device. Banners are important messaging
tools used to warn the unauthorized users of their activity and most importantly to warn them they are being monitored and
logged. Banner messages are very useful for law enforcement.
Pages:
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133