Chapter 9 Configuring Security Features
Configuring AutoSecure
For information about configuring AAA services and supported security protocols, see Securing User Services Configuration Guide Library, Cisco IOS Release 12.4T.
Configuring AutoSecure
The AutoSecure feature disables common IP services that can be exploited for network attacks and enables IP services and features that can aid in the defense of a network when under attack. These IP services are all disabled and enabled simultaneously with a single command, greatly simplifying security configuration on your router. For a complete description of the AutoSecure feature, see the AutoSecure feature document.
Configuring Access Lists
Access lists permit or deny network traffic over an interface based on source IP address, destination IP address, or protocol. Access lists are configured as standard or extended. A standard access list either permits or denies passage of packets from a designated source. An extended access list allows designation of both the destination and the source, and it allows designation of individual protocols to be permitted or denied passage.
For more complete information on creating access lists, see Security Configuration Guide: Access Control Lists, Cisco IOS Release 12.4T.
An access list is a series of commands with a common tag to bind them together. The tag is either a number or a name. Table
Table
ACL Type
Numbered
Standard
Extended
Named
Configuration Commands
Standard
Extended
ip
ip
Cisco 819 Series Integrated Services Routers Software Configuration Guide
|
| |
|