One of our subsidiary companies has a Cisco 2821 connected to both data and voice providers links. This device is uspported by a thrid party. Recently the device was compromised and a large phone bill was run up with the calls being made from the Cisco 2821. The local maintainer made changes to the 2821 as a result of the compromise (I have details of the cisco config logs before and after the change). My question is - is there ahjyway to interrogate the cisco config to ascertain what secuirty fixes have been applied and when ?
Not that I know of. There's not really "security fixes" in the Cisco environment compared to Windows update. Cisco releases IOS versions to fix issues. You could find out what version you are currently running by doing a sh ver at the command line, but that will only tell you the IOS version you're running. You can also do a sh flash or dir and it will show you the files that are in flash. It's possible that you could have two IOSs stored in flash, and one being an earlier version than the current one. (Not everyone has to delete the current version before updating to the new.)
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...