作者:Saadat Malik
出版日期:November 15, 2002
出版社:Cisco Press
页数:800
ISBN:1-58705-025-0
文件格式:CHM
Expert solutions for securing network infrastructures and VPNs.
Build security into the network by defining zones, implementingsecure routing protocol designs, and building safe LAN switchingenvironments
Understand the inner workings of the Cisco PIX Firewall and analyzein-depth Cisco PIX Firewall and Cisco IOS Firewall features andconcepts
Understand what VPNs are and how they are implemented with protocols such as GRE, L2TP, and IPSec
Gain a packet-level understanding of the IPSec suite of protocols,its associated encryption and hashing functions, and authenticationtechniques
Learn how network attacks can be categorized and how the Cisco IDS is designed and can be set upto protect against them
Control network access by learning how AAA fits into the Cisco security model and by implementing RADIUS and TACACS+ protocols
Provision service provider security using ACLs, NBAR, and CAR to identify and control attacks
Identify and resolve common implementation failures by evaluating real-world troubleshooting scenarios
As organizations increase their dependence on networks for corebusiness processes and increase access to remote sites and mobileworkers via virtual private networks (VPNs), network security becomesmore and more critical. In today’s networked era, information is anorganization’s most valuable resource. Lack of customer, partner, andemployee access to e-commerce and data servers can impact both revenueand productivity. Even so, most networks do not have the proper degreeof security. Network Security Principles and Practices provides anin-depth understanding of the policies, products, and expertise thatbrings organization to this extremely complex topic and boosts yourconfidence in the performance and integrity of your network systems andservices. Written by the CCIE engineer who wrote the CCIE Security labexam and who helped develop the CCIE Security written exam, NetworkSecurity Principles and Practices is the first book to help preparecandidates for the CCIE Security exams.
Network Security Principles and Practices is a comprehensive guideto network security threats and the policies and tools developedspecifically to combat those threats. Taking a practical, appliedapproach to building security into networks, the book shows you how tobuild secure network architectures from the ground up. Security aspectsof routing protocols, Layer 2 threats, and switch security features areall analyzed. A comprehensive treatment of VPNs and IPSec is presentedin extensive packet-by-packet detail. The book takes abehind-the-scenes look at how the Cisco PIX(r) Firewall actually works,presenting many difficult-to-understand and new Cisco PIX Firewall andCisco IOS(r) Firewall concepts. The book launches into a discussion ofintrusion detection systems (IDS) by analyzing and breaking downmodern-day network attacks, describing how an IDS deals with thosethreats in general, and elaborating on the Cisco implementation of IDS.The book also discusses AAA, RADIUS, and TACACS+ and their usage withsome of the newer security implementations such as VPNs and proxyauthentication. A complete section devoted to service providertechniques for enhancing customer security and providing support in theevent of an attack is also included. Finally, the book concludes with asection dedicated to discussing tried-and-tested troubleshooting toolsand techniques that are not only invaluable to candidates workingtoward their CCIE Security lab exam but also to the security networkadministrator running the operations of a network on a daily basis.