Ckk

AAA, 228-229

accounting, 231-232 authentication, 230 authorization, 230-231 ABRs (Area Border Routers), 63 access lists, 353-355 extended, 196-198 IP packet debugging, 179-180 standard, 190-195 wildcard masks, 192 accessing Cisco routers, 187 accounting, 228, 231-232 ACKs (acknowledgments), 58 ACS (Cisco Secure Access Control Server).

See Cisco Secure Active Directory, 135 Active FTP, 116-118 adaptive cut-through switching, 23 adjacencies, 62 administrative distances, 51 AES (Advanced Encryption Standard), 250-251

agents (SNMP), 124

Aggregator attribute (BGP), 73

aggressive mode (IKE), 259

AH, 257-258

alias command, 175

allocating IP addresses, InterNIC, 357

ambiguous test questions, decoding, 628-629

anomaly-based analysis, 386

anomoly-based IDS systems, 305

application layer (OSI model), 18

applications

NetRanger, 309 Director, 311

typical network placement, 309 TFTP, 114

applying access lists to interfaces, 193-195 areas, 62 ARP, 38-39

AS (autonomous systems), 62 AS_Path attribute (BGP), 73 ASA (Adaptive Security Algorithm), 362 ASBRs (Autonomous system boundary routers), 63 asynchronous communications, 80-81 Atomic Aggregate attribute (BGP), 73 attacks birthday attacks, 421 CAM overflow, 201-202 chargen, 420 CPU-intensive, 420 DDoS, 420

DHCP starvation, 207-208 DNS poisoning, 420 DoS, 418, 421 E-mail, 420

incident response teams, 415-416 Land.C, 420

MAC spoofing, 205-207

man in the middle, 421 methods of, 417 motivation for, 413 ping of death, 419 sacrificial hosts, 419 smurf, 421 spoof attacks, 421 STP manipulation, 204 TCP SYN flood, 419 teardrop, 420 UDP bombs, 420 VLAN hopping, 202-203 attributes of RADIUS, 234-235 authentication, 228-230 HTTP, 120 method lists, 238 on TACACAS+ servers, 240 PPP, 78 authoritative time sources configuring, 131-132 stratum, 130-131 authorization, 229-231

on TACACAS+ servers, 240-241 AVVID (Cisco Architecture for Voice, Video and Integrated Data), 84 WLAN solutions, 85-88

Was this article helpful?

0 0

Post a comment