[unisog] Routers

Valdis.Kletnieks at vt.edu Valdis.Kletnieks at vt.edu
Mon Mar 29 15:20:14 GMT 2004


On Sat, 27 Mar 2004 07:55:19 EST, kmaharaj at ubishops.ca  said:

> Valdis, your suggestions are very useful. Could you elaborate a little on these
> two? What would you do to harden the routers; and do you know of config control
> software for routers, or are you referring to home-grown methods?

Hardening: (Sorry, all I have handy are Cisco info, anybody got Juniper docs? ;)

Cisco has a guide: http://www.cisco.com/warp/public/707/21.html

The NSA has a good document too: http://nsa2.www.conxion.com/cisco/

The Center for Internet Security (http://www.cisecurity.org) has a benchmark
for Cisco gear that should get you started with the basics.

For config management, a lot of people seem to like Rancid (http://www.shrubbery.net/rancid/)
but I can't say myself how it is, since I'm not a router guy....
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/unisog/attachments/20040329/7ececa75/attachment-0003.bin


More information about the unisog mailing list