Discussion on:
DOWNLOAD: Cisco IOS router: Lock it down in 10 steps

6
Comments
Add Your Opinion

Join the conversation!

Follow via:
RSS
Email Alert
Just In
CISCO IOS DOWNLOAD
universe.lib 5th Jul 2011
Hi, here is a link of a folder full of Cisco IOS, http://www.megaupload.com/?f=NAAUJN6G
View in thread

Tags: security, cisco, router, ios

Community Preferences
0 Votes
+ -
Editor
DOWNLOAD: Cisco IOS router: Lock it down in 10 steps
jasonhiner 31st May 2005
.
http://techrepublic.com.com/5138-6240-5577625.html

After you take a look at this download, please post your feedback, ideas for future improvements, or further thoughts on this topic.

Thanks,
TechRepublic Downloads Team
0 Votes
+ -
Private IP addresses
tjdeckard@... 6th Jun 2005
I don't have as many acronyms after my title as you guys so I may be totally wrong but I'm wondering if the section about blocking private IPs from Internet-facing interfaces is entirely correct. In that section it is noted that you should block requests originating from 192.168.0 with a wildcard mask of 0.0.0.255. According to the IETF website though the range is from 192.168.0.0 - 192.168.255.255. So shouldn't the wildcard mask be 0.0.255.255 instead?

Also, wouldn't it be wise to include the range of reserved addresses for Automatic Private IP Addressing (169.254.0.0 - 169.254.255.255) ?
0 Votes
+ -
You are correct!
ddavis@... 14th Jun 2005
Thank you for taking the time to comment on this download.
You are completely correct about the 192.168.0.0 network. There is a typo in the document.
Also, I think it would be very smart to include the 169.254 network.
We will get this revised and reposted.
Thank you for reading TechRepublic and you deserve "Kudos" for reading so closely.
Thanks,
David
0 Votes
+ -
Network Time Protocol
ToolMan2010 22nd Dec 2005
When I first took over the network responsibilities at my current position, I set up my Internet-facing routers to pull time from trusted servers. Then I attended a SANS class where we talked about an optional strategy to have one key device poll an outside server and the routers then all pull from that controlled device. First advantage is to the outside service, since this changed 57 requests to 1, and I think it makes the routers less visible to the Internet. This is one of those 'IMHO' type choices, but anything that makes my routers less visible (less chatty on the outside interface) makes them less of a target.
0 Votes
+ -
Editor
Great tip
jasonhiner 3rd Jan 2006
Thanks for adding it to the feedback on this piece.
0 Votes
+ -
CISCO IOS DOWNLOAD
universe.lib 5th Jul 2011
Hi, here is a link of a folder full of Cisco IOS, http://www.megaupload.com/?f=NAAUJN6G
Keyboard Shortcuts:
Prev
Next
Toggle
Join the conversation
Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

Join the TechRepublic Community and join the conversation! Signing-up is free and quick, Do it now, we want to hear your opinion.

Join Login

Keep Up with TechRepublic

Discover more newsletters

Follow us however you choose!

Media Gallery

View All

Hot Discussions

Start a Discussion
View All

Hot Questions

Ask a Question