Network Security Technologies and Solutions is a comprehensive reference to the most cutting-edge security products and methodologies available to networking professionals today. This book helps you understand and implement current, state-of-the-art network security technologies to ensure secure communications throughout the network infrastructure. With an easy-to-follow approach, this book serves as a central repository of security knowledge to help you implement end-to-end security solutions and provides a single source of knowledge covering the entire range of the Cisco network security portfolio. The book is divided into five parts mapping to Cisco security technologies and solutions: perimeter security, identity security and access management, data privacy, security monitoring, and security management. Together, all these elements enable dynamic links between customer security policy, user or host identity, and network infrastructures.
With this definitive reference, you can gain a greater understanding of the solutions available and learn how to build integrated, secure networks in today's modern, heterogeneous networking environment. This book is an excellent resource for those seeking a comprehensive reference on mature and emerging security tactics and is also a great study guide for the CCIE Security exam.
Filter traffic with access lists and implement security features on switches Configure Cisco IOS router firewall features and deploy ASA and PIX Firewall appliances Understand attack vectors and apply Layer 2 and Layer 3 mitigation techniques Secure management access with AAA Secure access control using multifactor authentication technology Implement identity-based network access control Apply the latest wireless LAN security solutions Enforce security policy compliance with Cisco NAC Learn the basics of cryptography and implement IPsec VPNs, DMVPN, GET VPN, SSL VPN, and MPLS VPN technologies Monitor network activity and security incident response with network and host intrusion prevention, anomaly detection, and security monitoring and correlation Deploy security management solutions such as Cisco Security Manager, SDM, ADSM, PDM, and IDM Learn about regulatory compliance issues such as GLBA, HIPPA, and SOX
Country of Publication:
01 November 2016
Professional and scholarly
Table of Contents Introduction Part I: Perimeter Security Chapter 1: Overview of Network Security Chapter 2: Access Control Chapter 3: Device Security Chapter 4: Security Features on Switches Chapter 5: Cisco IOS Firewall Chapter 6: Cisco Firewalls - Appliance and Module Chapter 7: Attack Vectors and Mitigation Techniques Part 2: Identity Security and Access Management Chapter 8: Securing Management Access Chapter 9: Cisco Secure ACS Chapter 10: Multi-Factor Authentication Chapter 11: Layer 2 Access Control Chapter 12: Wireless LAN (WLAN) Security Chapter 13: Network Admission Control (NAC) Part 3: Data Privacy Chapter 14: Cryptography Chapter 15: IPSec VPN Chapter 16: Dynamic Multipoint VPN (DMVPN) Chapter 17: Group Encrypted Transport VPN (GET VPN) Chapter 18: Secure Sockets Layer VPN (SSL VPN) Chapter 19: MPLS VPN Part 4: Security Monitoring Chapter 20: Network Intrusion Prevention Chapter 21: Host Intrusion Prevention Chapter 22: Anomaly Detection Chapter 23: Security Monitoring, Analysis, and Response System using CS-MARS Part 5: Policy and Security Management Chapter 24: Cisco Security Management Applications Chapter 25: Business Governance / Regulatory Compliance Appendices
Yusuf Bhaiji, CCIE No. 9305 (Routing and Switching and Security), has been with Cisco for seven years and is currently the program manager for the Cisco CCIE Security Certification and CCIE proctor in Cisco Dubai Lab. Prior to this, he was technical lead for the Sydney TAC Security and VPN team. Yusuf's passion for security technologies and solutions has played a dominant role in his 17 years of industry experience, from as far back as his initial master's degree in computer science, and has since been reflected in his numerous certifications. Yusuf prides himself in his knowledge-sharing abilities, which are evident in the fact that he has mentored many successful candidates, as well as having designed and delivered a number of Network Security solutions around the globe. Yusuf is an advisory board member of several nonprofit organizations for the dissemination of technologies and promotion of indigenous excellence in the field of internetworking through academic and professional activities. Yusuf chairs the Networkers Society of Pakistan (NSP) and IPv6 Forum Pakistan chapter. Yusuf has also authored a Cisco Press publication titled CCIE Security Practice Labs (ISBN 1587051346), released in early 2004. He has been a technical reviewer for several Cisco Press publications and written articles, white papers, and presentations on various security technologies. He is a frequent lecturer and well-known speaker presenting in several conferences and seminars worldwide.