Implementing Cisco IOS Network Security IINS CCNA Security Exam 640-553 Authorized Self-Study Guide.pdf

(11126 KB) Pobierz
Implementing Cisco IOS
Network Security (IINS)
Catherine Paquet
Cisco Press
800 East 96th Street
Indianapolis, IN 46240
ii
Implementing Cisco IOS Network Security (IINS)
Implementing Cisco IOS Network Security (IINS)
Catherine Paquet
Copyright © 2009 Cisco Systems, Inc.
Published by:
Cisco Press
800 East 96th Street
Indianapolis, IN 46240 USA
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means,
electronic or mechanical, including photocopying, recording, or by any information storage and retrieval
system, without written permission from the publisher, except for the inclusion of brief quotations in a
review.
Printed in the United States of America
First Printing April 2009
Library of Congress Cataloging-in-Publication Data:
Paquet, Catherine.
Implementing Cisco IOS network security (IINS) / Catherine Paquet.
p. cm.
ISBN-13: 978-1-58705-815-8 (hardcover)
ISBN-10: 1-58705-815-4 (hardcover)
1. Computer networks--Security measures. 2. Cisco IOS. I. Title.
TK5105.59.P375 2009
005.8--dc22
2009008780
ISBN-13: 978-1-58705-815-8
ISBN-10: 1-58705-815-4
Warning and Disclaimer
This book is designed to provide information about implementing Cisco IOS network security. It provides
the information necessary to prepare for Cisco exam 640-553, Implementing Cisco IOS Network Security
(IINS). For those who already possess a CCNA certification, passing exam 640-553 provides the addition-
al certification of CCNA Security. Every effort has been made to make this book as complete and as
accurate as possible, but no warranty or fitness is implied.
The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc., shall have
neither liability nor responsibility to any person or entity with respect to any loss or damages arising from
the information contained in this book or from the use of the discs or programs that may accompany it.
The opinions expressed in this book belong to the author and are not necessarily those of Cisco Systems, Inc.
iii
Trademark Acknowledgments
All terms mentioned in this book that are known to be trademarks or service marks have been appropriate-
ly capitalized. Cisco Press or Cisco Systems, Inc., cannot attest to the accuracy of this information. Use of
a term in this book should not be regarded as affecting the validity of any trademark or service mark.
Corporate and Government Sales
The publisher offers excellent discounts on this book when ordered in quantity for bulk purchases or spe-
cial sales, which may include electronic versions and/or custom covers and content particular to your busi-
ness, training goals, marketing focus, and branding interests. For more information, please contact:
U.S.
Corporate and Government Sales
1-800-382-3419 corpsales@pearsontechgroup.com
For sales outside the United States please contact:
International Sales
international@pearsoned.com
Feedback Information
At Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each book
is crafted with care and precision, undergoing rigorous development that involves the unique expertise of
members from the professional technical community.
Readers’ feedback is a natural continuation of this process. If you have any comments regarding how we could
improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us through
email at feedback@ciscopress.com. Please make sure to include the book title and ISBN in your message.
We greatly appreciate your assistance.
Publisher:
Paul Boger
Associate Publisher:
Dave Dusthimer
Executive Editor:
Brett Bartow
Project Editor:
Seth Kerney
Copy Editor:
Keith Cline
Editorial Assistant:
Vanessa Evans
Cover Designer:
Louisa Adair
Indexer:
Tim Wright
Business Operation Manager Cisco Press:
Anand Sundaram
Manager Global Certification:
Erik Ullanderson
Managing Editor:
Patrick Kanouse
Senior Development Editor:
Christopher Cleveland
Technical Editors:
Dave Chapman and Andrew Whitaker
Book Designer:
Louisa Adair
Composition:
Mark Shirar
Proofreader:
Leslie Joseph
Americas Headquarters
Cisco Systems, Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International BV
Amsterdam, The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at
www.cisco.com/go/offices.
CCDE, CCENT, Cisco Eos, Cisco HealthPresence, the Cisco logo, Cisco Lumin, Cisco Nexus, Cisco StadiumVision, Cisco TelePresence, Cisco WebEx, DCE, and Welcome to the Human Network are trademarks; Changing the
Way We Work, Live, Play, and Learn and Cisco Store are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the
Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step,
Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQuick Study, IronPort, the IronPort logo, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers,
Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and
the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0812R)
iv
Implementing Cisco IOS Network Security (IINS)
About the Author
Catherine Paquet
is a practitioner in the field of internetworking, network security, and
security financials. She has authored or contributed to eight books thus far with Cisco
Press. Catherine has in-depth knowledge of security systems, remote access, and routing
technology. She is a Cisco Certified Security Professional (CCSP) and a Cisco Certified
Network Professional (CCNP). Catherine is also a certified Cisco instructor with Cisco’s
largest training partner, Global Knowledge, Inc. She also works on IT security projects for
different organizations on a part-time basis. Following her university graduation from the
Collège Militaire Royal de St-Jean (Canada), she worked as a system analyst, LAN manager,
MAN manager, and eventually as a WAN manager. In 1994, she received a master’s
degree in business administration (MBA) with a specialty in management information
systems (MIS) from York University.
Recently, she has been presenting a seminar on behalf of Cisco Systems (Emerging
Markets) on the topic of the business case for network security in 22 countries. In 2002
and 2003, Catherine volunteered with the U.N. mission in Kabul, Afghanistan, to train
Afghan public servants in the area of networking.
Catherine lives in Toronto with her husband. They have two children, who are both
attending university.
About the Technical Reviewers
David Chapman,
CISSP-ISSAP, CCSP, is an independent information security consultant
specializing in vulnerability assessments, penetration testing, and the design and imple-
mentation of secure network infrastructures. His protocol expertise includes TCP/IP,
IPsec, 802.11 wireless, BGP, IPX, SNA, AppleTalk, Frame Relay, PPP, HDLC, LLC, and
NetBIOS/SMB. David is the coauthor of
Cisco Secure PIX Firewalls,
from Cisco Press.
Andrew Whitaker,
CCSP, is the Director of Enterprise InfoSec and Networking for
TechTrain, where he performs penetration tests and teaches ethical hacking and Cisco
courses. He has been working in the IT industry for more than 10 years, specializing in
Cisco and security technologies, and has performed penetration tests for numerous finan-
cial institutions and Fortune 500 companies. Andrew is the coauthor of
Penetration
Testing and Network Defense,
from Cisco Press.

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika:

Zgłoś jeśli naruszono regulamin