H

hashing algorithms, 251-252 HDLC, 76

Hello packets EIGRP, 58 OSPF, 62 heuristic-based signatures, 386 hiding secret passwords, 189 HIDS, comparing with NIDS, 305 hijacking, 418 holdtime, 58 host IDSs, 422

hosts per subnet, calculating, 30-31 HSRP, 41

configuring, 44-45 enabling, 43 status, viewing, 45 HTTP (Hypertext Transfer Protocol), 119

defining port number, 121 SSL, 121

user authentication, 120 hybrid routing protocols, EIGRP, 57-58

configuration example, 59-61

iBGP (internal BGP), 74 iCisco SDM (Security Device Manager), 330 ICMP, 46-47 IDS Device Manager, 311 IDSs (intrusion detection systems), 303 anomoly-based, 305 Cisco IDS

Signature Engines, 423-424 supported products, 422 Cisco Inline IDS, 311 NetRanger, 309 Director, 311

typical network placement, 309 network-based, 305-306, 386 notification alarms, 303 placement, 305-307 signature-based, 304 tuning, 307-308 IETF (Internet Engineering Task Force), 29

web site, 417 IKE, 258-259

configuring, 264-272

phase I message types, 259-260

phase II message types, 260-264

images, 157

incident response teams, 415-416

inform requests (SNMP), 124

Initial configuration mode (IOS), 164

inside global addresses, 356

inside local addresses, 356

Interface configuration mode (IOS), 164

interfaces, 163, 193-195

Ethernet states, 173

Internet Domain Survey web site, 417 Internet newsgroups, 416-417 InterNic, 357

intruders, methods of attack, 417

IOS images, copying from TFTP servers, 115

IP addressing address classes, 29 ARP, 38-39 CIDR, 32

classful addressing, 33 DHCP, 40 DNS, 110-113 logical AND operation, 30 packets, 27-29 RARP, 39 subnets, 29-30 subnetting, 30-32

IP GRE (generic routing encapsulation)

tunnels, configuring, 383-385 ip http authentication command, 120 IP multicast, 79 IP packet debugging, 179-180 ip route-cache command, 176 IP source guard, 208 ip subnet-zero command, 32 ip verify unicast reverse-path command, 430 IPSec, 254

configuring, 264-272 IKE, 258-259

phase I message types, 259-260 phase II message types, 260-263

ISDN (Integrated Services Digital Network), 75

commands, 78 framing, 76 layer 2 protocols, 76 authentication, 78 HDCL, 76 LCP, 78 NCP, 78 PPP, 77

ISL (Inter-Switch Link), 26

ISO (International Organization for

Standardization), 14 ISOC (Internet Society) web site, 417

Was this article helpful?

0 0

Post a comment