One of the strongest entries in the Cisco IOS Reference Library, Cisco IOS Network Security is full of tips and tricks. Though it resists calling forth overplayed images of wily, wild-eyed hackers, the book does remind you that in the age of remote users and widespread Internet access, security is a central concern for anyone running a network.
Divided into five sections, the stage is set in the book's first chapter on security fundamentals. Cautioning against a slapdash approach, the authors offer pointers on developing and implementing a security policy for your organization. Heavily promoted is Cisco's Authentication, Authorization, and Accounting (AAA) security framework. Authentication lets you identify your users, authorization lets you decide what they can and can't have access to, and accounting lets you know what processes users are running and how much of the network's resources they are consuming. Cisco's team maintains that the AAA system forces you to keep a tight rein on your network, ultimately resulting in a more secure environment.
A formidable section on filtering outlines the multifarious ways in which traffic can be allowed into or out of your network. Also strong is the section on network data encryption, the key to sending confidential information over the Internet. Though far from "security made easy," Cisco IOS Network Security adequately and elegantly covers the bases within the confines of IOS and Cisco products. --Sarah L. Roberts-Witt
From the Back Cover
This book is a comprehensive guide detailing security configuration from both a remote site as well as on and between enterprise networks. Through the use of real-world examples, it provides the reader with the most current technologies available and teaches how to effectively implement and support these technologies on a network. After reading this book, administrators will possess a greater understanding of Cisco network security solutions and the hardware, protocols, and services involved. Hence, they will be able to make more intelligent, cost-effective and quantifiable networking decisions for their environment.Cisco Network Security will help readers perform their jobs at a higher level. It offers system optimization techniques, which will strengthen results, increase productivity and improve efficiency.