![]() all vty lines accept only SSH connectionsĬORP(config)# ip domain-name ĬORP(config)# ip ssh authentication-retries 2Ĭ.SSH version 2, timeout of 90 seconds, and 2 authentication retries.RSA encryption key pair using a modulus of 1024.Note: CORP is already configured with the username SSHAccess and the secret password ciscosshaccess.Configure the CORP router to accept SSH connections. to send logging messages to the NTP/Syslog serverĬORP(config)# ntp server 172.16.25.2 key 0ĬORP(config)# service timestamps log datetime msecī.to update the router calendar (hardware clock) from the NTP time source.as an NTP client to the NTP/Syslog server.Step 2: Configure Secure Network Management for the CORP Router. ![]() Disable the CDP protocol only on the link to the Internet router. disconnect after being idle for 20 minutes.Į.Note: CORP is already configured with the username CORPADMIN and the secret password ciscoccnas. Configure the console port and all vty lines with the following requirements: Enable password encryption for all clear text passwords in the configuration file.ĬORP(config)# service password-encryptionĭ. Configure an encrypted privileged level password of ciscoclass.Ĭ. Configure the CORP router to only accept passwords with a minimum length of 10 characters.ĬORP(config)# security password min-length 10ī. Step 1: Configure Basic Device Hardening for the CORP Router.Ī. Note: Appropriate verification procedures should be taken after each configuration task to ensure that it has been properly implemented. configure a ZPF to implement security policies. ![]() configure port security and disable unused switch ports. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |