11-28-2013 01:06 PM - edited 03-04-2019 09:43 PM
Hi all
when running your own router to the ISP using BGP, What management protections for the router do people use, I mean management and control plane protection
has anyone got an example config ?
cheers
Carl
11-28-2013 02:32 PM
If your network team is an particular area, put all members of the network team in a specific subnet, like a /24 or smaller.
You also may like to consider getting a linux box. One of the main function is for reverse-telnet into your appliance from the outside.
You create an ACL on your appliance that only people in the subnet is allowed access to the appliances.
Disable telnet and enable SSH. Make sure you don't use simple passwords.
RADIUS and TACACS ... very important. Only way to gain access to your appliances is using their Windows login.
11-29-2013 12:55 AM
how about management plane protection, CoPP etc ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide