Network Ppt 76781 | Switch V7 Ch10

362x Filetype PPTX File size 1.41 MB Source: kemt-old.fei.tuke.sk

File: Network Ppt 76781 | Switch V7 Ch10

chapter 10 objectives this chapter covers the following topics overview of switch security issues required best practices for basic security protection on catalyst switches campus network vulnerabilities port security storm ...

Filetype Power Point PPTX | Posted on 02 Sep 2022 | 4 years ago

Download

Partial capture of text on file.

Chapter 10 Objectives
This chapter covers the following topics:
 Overview of switch security issues
 Required best practices for basic security protection on
Catalyst switches
 Campus network vulnerabilities
 Port security
 Storm control
 Mitigating spoofing attacks
 DHCP snooping, IP Source Guard, and dynamic ARP
inspection
 Securing VLAN trunks
 Private VLANs
Chapter 10
© 2007 – 2016, Cisco Systems, Inc. All rights reserved. Cisco Public 2
Overview of
Switch Security
Issues
Chapter 10
© 2007 – 2016, Cisco Systems, Inc. All rights reserved. Cisco Public 3
Overview of Switch Security Issues
 Most of the industry
attention focuses on security
attacks from outside the
walls of an organization and
at the upper OSI layers.
 The default state of
networking equipment
highlights this focus on
external protection and
internal open
communication.
 Many security features are
available for switches and
routers, but they must be
enabled to be effective
Chapter 10
© 2007 – 2016, Cisco Systems, Inc. All rights reserved. Cisco Public 4
Overview of Switch Security Issues
Reasons exist for strong protection of the enterprise campus
infrastructure
 Relying on the security that has been established at the enterprise
edge fails as soon as security there is compromised. Having several
layers of security increases the protection of the enterprise campus,
where the most strategic assets usually reside.
 If the enterprise allows visitors into its buildings, an attacker can
potentially gain physical access to devices in the enterprise campus.
Relying on physical security is not enough.
 Very often, external access does not stop at the enterprise edge.
Applications require at least an indirect access to the enterprise
campus resources, which means that strong campus network security
is also necessary.
 Public and hybrid cloud architectures pose new risks. Even if the cloud
is secure, attacks from the inside can ultimately compromise the cloud.
Chapter 10
© 2007 – 2016, Cisco Systems, Inc. All rights reserved. Cisco Public 5
Cisco Switch
Security
Configuration
Best Practices
Chapter 10
© 2007 – 2016, Cisco Systems, Inc. All rights reserved. Cisco Public 6

The words contained in this file might help you see if this file matches what you are looking for:

...Chapter objectives this covers the following topics overview of switch security issues required best practices for basic protection on catalyst switches campus network vulnerabilities port storm control mitigating spoofing attacks dhcp snooping ip source guard and dynamic arp inspection securing vlan trunks private vlans cisco systems inc all rights reserved public most industry attention focuses from outside walls an organization at upper osi layers default state networking equipment highlights focus external internal open communication many features are available routers but they must be enabled to effective reasons exist strong enterprise infrastructure relying that has been established edge fails as soon there is compromised having several increases where strategic assets usually reside if allows visitors into its buildings attacker can potentially gain physical access devices in not enough very often does stop applications require least indirect resources which means also necessar...

Related files

Share

Help

Related files

Share

Share to social media

Help

Login Area