Terms you'll need to understand:
Techniques you'll need to master:
The largest part of any network, at least in the number of hosts present, is almost always the campus, that portion of the network inside the main interface to the outside world (the edge). However, although it has more hosts , it is a bit simpler in its security configuration needs because nothing should (not will , only should ) get in this far from the outside. Of course, you still have to protect resources from the possible intrusion from the outside, just as you must protect them from internal threats (which you can never discountremember, they are the larger number of attacks, according to some studies). In addition, some of what you do for security reasons parallels things that you probably already do for network traffic management. That makes the campus a good place to start our look at what Cisco products are present and how they should be configured in a network designed along the SAFE Blueprint principles.
Inside the campus, you need to know how to implement security with routers and switches, basic IDS (both NIDS and HIDS) configuration, and basic AAA. So we'll discuss those subjects in that order. |