Attack & Mitigation

clark white · ‎09-13-2016

Dears,

To have a recommended security configuration on cisco switches and routers and firewalls which will be approved by a security auditor organization , i want to know the security type of attacks and their mitigation on cisco switches, routers and firewalls

for example: all vlans should not be allowed on the trunk becz that can cause vlan hopping attack, so similar like this i want to know with

configuration example

type of attack mitigation

DDOS etc etc
xyz attack etc, etc
XXX attach XXX mitigation

thanks

nspasov · ‎09-13-2016

Hello Clark-

I would suggest checking the IOS Hardening guide below:

http://www.cisco.com/c/en/us/support/docs/ip/access-lists/13608-21.html#anc0

I hope this helps!

Thank you for rating helpful posts!

Thank you for rating helpful posts!

clark white · ‎09-13-2016

Dear,

i have been to this link before, but not all attacks are covered in this link

nspasov · ‎09-13-2016

Well, I am not aware of a list or document that accounts for 100% of all attacks :) If such document/link exists I would love to know about it too.

Your request was very generic "XYZ attack," "XXX attach" and as a result, I provided you with a generic link. If you are interested in securing your network/devices against specific attacks then you need to list them here.

Thank you for rating helpful posts!

Thank you for rating helpful posts!

mvsheik123 · ‎09-13-2016

Hi,

Check below links for L2 & L3 attack/mitigation info.

http://www.sanog.org/resources/sanog7/yusuf-L2-attack-mitigation.pdf

http://networkmitigations.blogspot.com/2011/01/layer-3-network-layer-attacks.html

hth

MS