本文主要介绍了IP网络及路由器的基本操作,并深入探讨了IP网络所面临的多种威胁模型,包括第二层以太网交换环境以及IPsec和MPLS VPN服务的安全问题。文中详细讲解了如何通过深度防御原则来分段和保护每个IP流量平面,还介绍了一系列安全技术,如访问控制列表(ACL)、速率限制、IP选项过滤等。
版权声明:原创作品,允许转载,转载时请务必以超链接形式标明文章原始出版、作者信息和本声明。否则将追究法律责任。
http://blog.youkuaiyun.com/topmvp - topmvp
*Understand the operation of IP networks and routers
*Learn about the many threat models facing IP networks, Layer 2 Ethernet switching environments, and IPsec and MPLS VPN services
*Learn how to segment and protect each IP traffic plane by applying defense in depth and breadth principles
*Use security techniques such as ACLs, rate limiting, IP Options filtering, uRPF, QoS, RTBH, QPPB, and many others to protect the data plane of IP and switched Ethernet networks
*Secure the IP control plane with rACL, CoPP, GTSM, MD5, BGP and ICMP techniques and Layer 2 switched Ethernet-specific techniques
*Protect the IP management plane with password management, SNMP, SSH, NTP, AAA, as well as other VPN management, out-of-band management, and remote access management techniques
*Secure the IP services plane using recoloring, IP fragmentation control, MPLS label control, and other traffic classification and process control techniques
http://rapidshare.com/files/82098001/1587053365.zip
http://depositfiles.com/files/2989005
*Understand the operation of IP networks and routers
*Learn about the many threat models facing IP networks, Layer 2 Ethernet switching environments, and IPsec and MPLS VPN services
*Learn how to segment and protect each IP traffic plane by applying defense in depth and breadth principles
*Use security techniques such as ACLs, rate limiting, IP Options filtering, uRPF, QoS, RTBH, QPPB, and many others to protect the data plane of IP and switched Ethernet networks
*Secure the IP control plane with rACL, CoPP, GTSM, MD5, BGP and ICMP techniques and Layer 2 switched Ethernet-specific techniques
*Protect the IP management plane with password management, SNMP, SSH, NTP, AAA, as well as other VPN management, out-of-band management, and remote access management techniques
*Secure the IP services plane using recoloring, IP fragmentation control, MPLS label control, and other traffic classification and process control techniques
http://rapidshare.com/files/82098001/1587053365.zip
http://depositfiles.com/files/2989005
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
