Cisco.Press.End.to.End.Network.Security.Defense.in.Depth.pdf
(
17341 KB
)
Pobierz
648950713 UNPDF
End-to-End Network Security
Defense-in-Depth
Omar Santos
Cisco Press
Cisco Press
800 East 96th Street
Indianapolis, Indiana 46240 USA
ii
End-to-End Network Security
Defense-in-Depth
Omar Santos
Copyright© 2008 Cisco Systems, Inc.
Published by:
Cisco Press
800 East 96th Street
Indianapolis, IN 46240 USA
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic
or mechanical, including photocopying, recording, or by any information storage and retrieval system, without
written permission from the publisher, except for the inclusion of brief quotations in a review.
Printed in the United States of America
First Printing August 2007
Library of Congress Cataloging-in-Publication Data:
Santos, Omar.
End-to-end network security : defense-in-depth / Omar Santos.
p. cm.
ISBN 978-1-58705-332-0 (pbk.)
1. Computer networks—Security measures. I. Title.
TK5105.59.S313 2007
005.8—dc22
2007028287
ISBN-10: 1-58705-332-2
ISBN-13: 978-1-58705-332-0
Warning and Disclaimer
This book is designed to provide information about end-to-end network security. Every effort has been made to
make this book as complete and as accurate as possible, but no warranty or fitness is implied.
The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems shall have
neither liability nor responsibility to any person or entity with respect to any loss or damages arising from
the information contained in this book or from the use of the discs or programs that may accompany it.
The opinions expressed in this book belong to the author and are not necessarily those of Cisco Systems.
Trademark Acknowledgments
All terms mentioned in this book that are known to be trademarks or service marks have been appropriately
capitalized. Cisco Press or Cisco Systems, Inc. cannot attest to the accuracy of this information. Use of a term in
this book should not be regarded as affecting the validity of any trademark or service mark.
iii
Feedback Information
At Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each book is crafted
with care and precision, undergoing rigorous development that involves the unique expertise of members from the
professional technical community.
Readers’ feedback is a natural continuation of this process. If you have any comments regarding how we could
improve the quality of this book or otherwise alter it to better suit your needs, you can contact us through e-mail at
feedback@ciscopress.com. Please make sure to include the book title and ISBN in your message.
We greatly appreciate your assistance.
Corporate and Government Sales
The publisher offers excellent discounts on this book when ordered in quantity for bulk purchases or special sales
which may include electronic versions and/or custom covers and content particular to your business, training goals,
marketing focus, and branding interests. For more information, please contact:
U.S. Corporate and Government Sales
1-800-382-3419
corpsales@pearsontechgroup.com
For sales outside the United States, please contact:
International Sales
international@pearsoned.com
Publisher
Paul Boger
Associate Publisher
Dave Dusthimer
Cisco Representative
Anthony Wolfenden
Cisco Press Program Manager
Jeff Brady
Executive Editor
Brett Bartow
Managing Editor
Patrick Kanouse
Development Editor
Betsey Henkels
Project Editor
Jennifer Gallant
Copy Editor
Karen A. Gill
Technical Editors
Pavan Reddy
John Stuppi
Editorial Assistant
Vanessa Evans
Book and Cover Designer
Louisa Adair
Composition
ICC Macmillan Inc.
Indexer
Ken Johnson
Proofreader
Anne Poynter
iv
About the Author
Omar Santos
is a senior network security engineer and Incident Manager within the Product Security
Incident Response Team (PSIRT) at Cisco. Omar has designed, implemented, and supported numerous
secure networks for Fortune 500 companies and the U.S. government, including the United States
Marine Corps (USMC) and the U.S. Department of Defense (DoD). He is also the author of many
Cisco online technical documents and configuration guidelines. Before his current role, Omar was a
technical leader within the World Wide Security Practice and Cisco Technical Assistance Center (TAC),
where he taught, led, and mentored many engineers within both organizations. He is an active member
of the InfraGard organization. InfraGard is a cooperative undertaking that involves the Federal Bureau
of Investigation and an association of businesses, academic institutions, state and local law enforcement
agencies, and other participants. InfraGard is dedicated to increasing the security of the critical
infrastructures of the United States of America.
Omar has also delivered numerous technical presentations to Cisco customers and partners, as well as
executive presentations to CEOs, CIOs, and CSOs of many organizations. He is also the author of the
Cisco Press books:
Cisco Network Admission Control,
Volume II: NAC Deployment and Troubleshooting,
and
Cisco ASA: All-in-One Firewall, IPS, and VPN Adaptive Security Appliance
.
v
About the Technical Reviewers
Pavan Reddy
, CCIE No. 4575, currently works as a consulting systems engineer for Cisco specializing
in network security. Pavan has been collaborating with customers and partners on the design and
implementation of large-scale enterprise and service provider security architectures for nearly ten years.
Before joining Cisco, Pavan worked as a network security engineer in the construction and financial
industries. Pavan also holds a bachelor of science degree in computer engineering from Carnegie Mellon.
John Stuppi
, CCIE No. 11154, is a network consulting engineer for Cisco. John is responsible for
creating, testing, and communicating effective techniques using Cisco product capabilities to
provide identification and mitigation options to Cisco customers who are facing current or expected
security threats. John also advises Cisco customers on incident readiness and response methodologies
and assists them in DoS and worm mitigation and preparedness. John is a CCIE and a CISSP, and he
holds an Information Systems Security (INFOSEC) Professional Certification. In addition, John has a
BSEE from Lehigh University and an MBA from Rutgers University. John lives in Ocean Township,
New Jersey with his wife Diane and his two wonderful children, Thomas and Allison.
Plik z chomika:
Caveman85
Inne pliki z tego folderu:
Cisco.Press.Penetration.Testing.and.Network.Defense.chm
(14976 KB)
Cisco.Press.IS.IS.Network.Design.Solutions.chm
(3096 KB)
Lab3-5.exe
(112 KB)
Practice_Lab4_Section_2.pdf
(31 KB)
Practice_Lab5_Section_3.pdf
(1392 KB)
Inne foldery tego chomika:
• Kurs Cisco CCNA v 3.1
Administrowanie Sieciami Komputerowymi - mgr inż Paweł Pławiak
CCNA
CCNA - CCSP - CNAP - CCSP - Cisco
CCNA - CCSP - CNAP - CCSP - Cisco2
Zgłoś jeśli
naruszono regulamin