Understand the operation of IP networks and routersLearn about the many threat models facing IP networks, Layer 2 Ethernet switching environments, and IPsec and MPLS VPN servicesLearn how to segment and protect each IP traffic plane by applying defense in depth and breadth principlesUse security techniques such as ACLs, rate limiting, IP Options filtering, uRPF, QoS, RTBH, QPPB, and many others to protect the data plane of IP and switched Ethernet networksSecure the IP control plane with rACL, CoPP, GTSM, MD5, BGP and ICMP techniques and Layer 2 switched Ethernet-specific techniquesProtect the IP management plane with password management, SNMP, SSH, NTP, AAA, as well as other VPN management, out-of-band management, and remote access management techniquesSecure the IP services plane using recoloring, IP fragmentation control, MPLS label control, and other traffic classification and process control techniques
This security book is part of the Cisco Press Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks.