199, 410
7100 series, 40, 41
SecureID, 13
7200 series, 40
7500 series, 40
commands, 35
Security. See Application layer; Data
Security Policy Database (SPD), 203
link layer; Host; Network; Network
applying, 212
layer; Transmission Control
defining, 212
Protocol/Internet Protocol;
See also Normal mode FTP; Passive
Transport layer
mode FTP
breaches. See Unix / UNIX
Sensor, 320–321, 328, 425
Cisco approach, 311–335
installation, 325–326
configuration, 10
completion, 326–327
considerations, 10
intrusion detection, configuration, 328
device, 139
setup, 324–327
features, overview, 133–139
Sensor placement, 310
gateways, 205
sensord, 323
management, 5
SEQ numbers, 302
payload. See Encapsulating Security
Serial 0, 87
Payload
Serial Line Internet Protocol (SLIP), 395
personnel, 299
connection, 264
posture assessments, 44
Serial port, 140
protocol
serial0 interface, 126
considerations, 255
Server access protection
identifier, 203
authentication, usage, 174–176
risk, 110, 235
lock-and-key usage, 94–96
server support, 336
Server (command), 145
services, identification/implementa-
Server_ip (host), 161
tion, 158–160
Servers. See File Transport Protocol;
strategies, 153–158
Mail servers; Proxy server; World
tests, 150
Wide Web
Security Association (SA), 31–33,
Service management solution, 362
202–203, 383. See also Internet
Service type settings, 387
Key Exchange; Internet Protocol
Session
Security
applications. See Bundled session
creation, 212
applications
Security Parameter Index (SPI), 31, 202
filtering, 71
Security policy, 140, 367
hijacking, 198
auditing, 385
SHA. See Secure Hash Algorithm
configuration, 153–170, 418
show access-list (command), 77
database, 203
show ip nat statistics (command), 121
definition, 384
show ip nat translations (command),
enforcement, 384
121–122
implementation. See Network
Shutdown, 143
management, 384–385
Signature dynamics systems, 13
usage. See Structure access lists
signature (extension), 332
Index 461Simple Mail Transfer Protocol (SMTP),
Software bugs, 293
Bạn đang xem 199, - Syngress Managing Cisco Network Security