Leaflet
4
OL-11615-01
Layer 2 Port Security 84
Layer 2 PDU 84
Layer 2 Protocol Tunneling 85
Multicast IGMP 85
Integrated Deployment Guidelines 86
Deploying Basic Device Hardening Tools and Techniques 86
Spanning Tree Protocol Security 87
Deploying Routing Protocol Security 88
Deploying Catalyst Integrated Security 89
Catalyst 6500 Hardware Rate Limiters and CoPP 90
Additional References 91
Unneeded Services 91
Unneeded Services in Cisco IOS and Catalyst OS 92
Cisco Discovery Protocol (CDP) 92
ICMP Redirects 93
ICMP Unreachables 93
Possible Unneeded Services in Cisco IOS 94
Directed Broadcast 95
Finger Protocol 95
IP BOOTP Server 95
IP Source Routing 96
PAD 96
Proxy ARP 96
TCP and UDP Small Servers 97
IP version 6 (IPv6) 97
Access Control 98
Secure Local Password Management 98
Password Management in Catalyst OS 98
Password Management in Cisco IOS 100
Interactive Access Control 102
Interactive Access in Catalyst OS 102
Interactive Access in Cisco IOS 103
Cisco IOS Login Enhancements 104
Warning Banners 104
Web-Based GUI Access 105
Web-Based GUI Access in Catalyst OS 105
Web-Based GUI Access in Cisco IOS 106
Secure Shell (SSH) 107
SSH in Catalyst OS 107