Network security is one of the essential network services; it spans the entire network and it must be addressed within each modular block. Modularity ensures that the network designer can focus on a security problem within a particular network module and integrate a particular solution into a global security solution. A modular approach simplifies the design and ensures that a security breach in one of the network modules remains isolated so that it does not affect the entire network.
This chapter starts by describing network security, including threats and risks, and network security policies. The Cisco Self-Defending Network strategy for designing network security is explored. The chapter concludes with a discussion of Cisco network security solutions for enterprise networks.
NOTE Wireless local-area network (WLAN) security is covered in Chapter 9, "Wireless Network Design Considerations."
Was this article helpful?