Intrusion Prevention System (IOS IPS) (formerly known as IOS IDS): Cisco IOS IPS offers
integrated IPS functionality as part of the Cisco IOS Software. From IOS Version 12.3T, Cisco IOS IPS
replaces the previous IOS IDS functionality by implementing a large part of classic sensor functionality as
part of the IOS-based device. IOS IPS is an inline intrusion detection sensor that scans packets and
sessions flowing through the router to identify any of the Cisco IOS IPS signatures that protect the
network from internal and external threats.
Authentication proxy: The authentication proxy feature (also known as Proxy Authentication) allows
security policy enforcement on a per-user basis. Earlier, user access and policy enforcement was
associated with a user's IP address or a single global policy applied to an entire user group. With the
authentication proxy feature, users can now be authenticated and authorized on a per-user policy with
access control customized to an individual level.
Port-to-Application Mapping (PAM): PAM allows you to customize TCP or User Datagram Protocol
(UDP) port numbers for network services or applications to nonstandard ports (for example, HTTP service
using TCP port 8080 instead of the default port 80).
Pages:
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207