Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Auto Secure Question

I am reading a Cisco Press book on Securing Perimiter Routers.

"Cisco Router Firewall Security" R.Deal @2005

It gives an example of Auto Secure with a couple of humongous ACL's.

One for example is for all Private Ip Source Addresses RFC 1918 blocked from the outside. Another is an IANA list. When I run auto secure on my new 2811 with advanced IP services it doesn not generate these long long ACL's. What has happened and is Auto Secure really a valid tool today???

1 REPLY
New Member

Re: Auto Secure Question

The auto secure feature it's a valid 'security configuration check method' but not updated.

As the iana list change its' better to configure the router like @:

http://www.cymru.com/Documents/secure-ios-template.html

Check also the following docs:

http://www.cisco.com/en/US/netsol/ns696/networking_solutions_white_papers_list.html

in particular:

http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6642/prod_white_paper09186a00801dbf61_ns696_Networking_Solutions_White_Paper.html

HTH

172
Views
3
Helpful
1
Replies