12-21-2008 10:48 PM
Hi,
Can anybody guide me is their any tool which can do configuration audit on Cisco Routers.
Best Regards,
Rahim Amir Ali
12-22-2008 05:35 AM
I am not a ware of specific tools,Im sure there must be some outthere, it is mostly guidelines one have to keep up with and follow.
Use these two links as references
Secure IOS template
http://www.cymru.com/Documents/secure-ios-template.html
Cisco Guide to Harden Cisco IOS Devices
http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml
There is a tool helpful - Output Interpreter to analyze IOS or PIX/ASA to provide some hints on config flaws - u need CCO access.
https://www.cisco.com/cgi-bin/Support/OutputInterpreter/home.pl?locale=en
Regards
12-22-2008 06:17 AM
The templates that Jorge provided is excellent as a guideline. I use them mysef.
On top of that, I use Nessus to scan for holes/vulnerabilities http://www.nessus.org
Also, use RAT http://www.cisecurity.org/bench_cisco.html
12-22-2008 10:16 AM
Nipper is a much better tool. It is open
source as well. It Supports multiple
vendors such as Juniper and Checkpoint.
12-22-2008 10:18 AM
Great links Danilo, grants a thourough look and to the list of how to.
CIS is indeed excellent resource !
I heard of Nipper excellent tool
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: