Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

internet router configuration

we are going to configure the router running BGP with ISP for Internet connection, what is the best practrise to condifure that router in terms of security?

2 REPLIES

Re: internet router configuration

There are several points you needs to consider based on your scenario, but see the attached general practices for tightening up the edge routers.

hth

Thank you

MS

New Member

Re: internet router configuration

Hi,

First and foremost, perimeter devices should be configured with out-of-the box security. Confgure your switch/router with the following:

Block/deny traffic originating from external network using these addresses 10.0.0.0/8, 127.0.0.0, 172.16.0.0/and 192.168.0.0 towards your perimeter devices.

With regards to BGP, routes that should not be advertised nor accepted should be filtered. This is done by configuring filter-lists.

Thanks,

k0rg

146
Views
4
Helpful
2
Replies