A

AAA (authentication, authorization and accounting), 208-209 accounting, 211-212 authentication, 210 authorization, 210-211 ABRs (Area Border Routers), 68 access lists, 250

extended, 187-189 filtering TCP services, 222-224 IP packet debugging, 171-172 standard, 182-187 wildcard masks, 184 accessing Cisco routers, 179 accounting, 208, 211-212 ACKs (acknowledgments), 63 ACS (Cisco Secure Access Control Server).

See Cisco Secure Active Directory, 133 Active FTP, 115-117

adaptive cut-through switching, 30 address classes, 36 adjacencies, 67

administrative distances, 56-57

agents (SNMP), 123

Aggregator attribute (BGP), 78

Aggressive mode (IKE), 246

AH (Authentication Header), 244-246

alias command, 167

allocating IP addresses, InterNIC, 325

ambiguous test questions, decoding, 572-573

application layer (OSI model), 25

applications

NetRanger, 300 Director, 302 sensors, 300

supporting platforms, 301 typical network placement, 300 TFTP, 113

applying access lists to interfaces, 185-187 areas, 67

arguments (UNIX commands), 286

ARP (Address Resolution Protocol), 45-46

AS (autonomous system), 67

AS_Path attribute (BGP), 77

ASA (Adaptive Security Algorithm), 330

ASBRs (autonomous system boundary routers), 68

asynchronous communications, 84-85

Atomic Aggregate attribute (BGP), 78

attacks birthday attacks, 372 chargen, 371 CPU-intensive, 371 DDoS, 371 DNS poisoning, 371 DoS, 370-372 e-mail, 371

incident response teams, 367

Land.C, 371 man in the middle, 372 methods of, 369 motivation for, 365 ping of death, 371 sacrificial hosts, 370 smurf, 372 spoof attacks, 372 TCP SYN flood, 371 teardrop, 371 UDP bombs, 371 attrib command (DOS), 285 attributes

BGP, 77-78 of RADIUS, 214 authentication, 208-210 HTTP, 119 Kerberos, 225 method lists, 217 on TACACAS+ servers, 219 PPP, 82 authoritative time sources configuring, 130-131 stratum, 128-129 authorization, 209-211

on TACACAS+ servers, 219-220

0 0

Post a comment