IsidoraLinton880

Från Wiki
Hoppa till: navigering, sök

Network security is a hot topic these days, and will only boost in importance in the months and years ahead.

Although most of the consideration is paid to exterior threats, there are some steps you can take to prevent unwanted Cisco router access from within your organization.

Whether you want to limit what specific users can do and run on your routers, or prevent unauthorized customers in your business from obtaining to config mode in the first location, right here are 4 crucial however basic actions you can take to do so.

Encrypt the passwords in your running configuration.

This is a fundamental Cisco router safety command that is usually overlooked. It doesnt do you any excellent to set passwords for your ISDN connection or Telnet connections if any person who can see your routers operating configuration can see the passwords. By default, these passwords are displayed in your operating config in clear text.

1 basic command takes care of that. In global configuration mode, run service password-encryption. This command will encrypt all clear text passwords in your operating configuration.

Set a console password.

If I walked into your network space proper now, could I sit down and start off configuring your Cisco routers?

If so, you need to have to set a console password. This password is a basic yet crucial step in limiting router access in your network. Go into line configuration mode with the command line con , and set a password with the password command.

Limit user capabilities with privilege level commands.

Not everyone who has access to your routers ought to be in a position to do anything they want. With careful use of privilege levels, you can limit the commands provided users can run on your routers.

Privilege levels can be a small clumsy at 1st, but with practice youll be tying your routers down as tight as you like. Pay a visit to www.cisco.com/univercd for documentation on configuring privilege levels.

Configure an allow secret password.

Its not uncommon for me to see a router that has an allow mode password set, but its in clear text.

By making use of allow secret, the enable mode password will automatically be encrypted. Keep in mind, if you have an enable password and enable secret password set on the identical router, the allow secret password takes precedence.

These four simple steps will aid stop undesirable router access from inside your network. If only preventing difficulties from outdoors your network was as basic! idesktop credit suisse

Personliga verktyg