06-04-2003 09:05 AM - edited 03-09-2019 03:32 AM
Hello,
I am looking for a document/link for setting up security on an internet router. What Access lists should be implemented; services denied both inbound and outbound. A common practice type document would be great.
In particular, what are the ramifications for allowing Microsoft networking out? UDP 137, 138 and 139.
Any help is appreciated
06-04-2003 09:18 AM
Hi Kirk -
The following document published by National Security Agency (NSA) for Router Security is excellent read and I'm sure will help you with your question, I acctually used it for my CCIE backround reading.
Link: http://www.nsa.gov/snac/index.html
Hope this helps -
06-05-2003 03:17 PM
Hi,
I would suggest you the following links. These has everything that you can configure your perimeter router to secure it.
http://www.cisco.com/en/US/tech/tk583/tk385/technologies_white_paper09186a0080174a5b.shtml
Thanks,
Mynul
07-08-2003 03:21 AM
I recently created a freeware script (available at http://hotunix.com/tools/) for checking Cisco config security:
"CCSAT (Cisco Configuration Security Auditing Tool) is a script to allow automated review of configuration security of large numbers of Cisco routers and switches. The tool is based upon industry best practices including Cisco, NSA and SANS security guides and recommendations. It is flexible and can report details down to individual device interfaces, lines, ACL's, AS's, etc."
Your comments and feedback are highly welcome! :)
07-09-2003 05:24 AM
http://www.cisecurity.org/bench_cisco.html
Is a good tool for auditing configurations.
ACLs on routers can be tricky - if it is not a stateful firewall, it is easy to break things. At a minimum though, you can block outbound all traffic with source ip addresses that you don't use.
Those particular MS ports should be blocked in and outbound, but a general rule is that you should block *everything* outbound that is not specifically permitted.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: