Archive for the ‘CCNP’ Category

In this tutorial we will learn how to configure and use vpn on routers.We will learn to create a vpn tunnel between routers for safe communication.

vpn

(more…)

Advertisements

In this tutorial we will learn how to configure router as a terminal server or an access server.Here in below diagram Router0 is working as a terminal server or you can say an access server.

So what this actually mean?

It means if a client seating on PC0 will try to login to router r1, r2,r3,r4 or r5 he/she cannot be able to access these routers directly,he/she must have to go through Router0 which is an access server.

router as terminal server

 

 

(more…)

In previous lab we have learnt how to configure OSPF clear text authentication,and now in this lab we will learn how to configure OSPF MD5 authentication which more secure than clear text authentication.Configuring OSPF MD5 authentication is very similar to configuring clear-text authentication. (more…)

If you have done your CCNA,you already familiar with the term OSPF and you also know how to configure it,but if you are new to networking you can learn about ospf along with it’s configuration from my blog.Today here i am going to discuss about how to configure ospf authentication on routers.OSPF can authenticate every OSPF message. This is usually done to prevent a rogue router from injecting false routing information and therefore causing a Denial-of-Service attack.

 

Two types of authentication method that can be used are:

1. clear text authentication clear text passwords are used,which is not more secure.

2. MD5 authenticationMD5 authentication is used. This type of authentication of more secure.

IMPORTANT NOTEwith OSPF authentication turned on, routers must pass the authentication process in order to become OSPF neighbors.

Here in this Lab we will learn how to configure clear text authentication method to secure ospf messages. (more…)

Suppose you  want to administer login ID and password information centrally for all routers. i.e your all routers get authentication from a central server.I am not saying that it is not possible to store all information locally on router but if you have a large number of routers,it is extremely time consuming to reconfigure all the routers for a password change or to simply add a new user.So instead of doing the time consuming work we use TACACS+ for AAA authentication.There is a huge benefit of using TACACS+ SERVER for authentication,one of them is that after using TACACS+ authentication none of information is stored on the router. (more…)

In this tutorial we learn how to secure a router even without knowing how to configure telnet or how to enable password on routers.Even if you are new to networking and you dont have idea about how to configure your router securely, you can easily provide security to your router.There is no need to read the whole book on router just to learn how to secure it.Cisco introduced the autosecure feature to quickly harden router configuration files in an automated fashion.

Now what does this autosecure feauture actually do?

autosecure disables common router features that might pose a security while enabling other IOS features that will assist to harden the router. (more…)