ITN Unit 16

security center

port scanner

antimalware

antivirus

firewall

RouterA(config)# login block-for 10 attempts 2 within 30

RouterA(config)# login block-for 30 attempts 2 within 10

RouterA(config)# login block-for 2 attempts 30 within 10

RouterA(config)# login block-for 30 attempts 10 within 2

access attack

reconnaissance attack

denial of service attack

worm attack

malware that was written to look like a video game

malware that requires manual user intervention to spread between systems

malware that attaches itself to a legitimate program and spreads to other programs when launched

malware that can automatically spread from one system to another by exploiting a vulnerability in the target

denial-of-service

man-in-the-middle attack

extraction of security parameters

username enumeration

to require users to prove who they are

to determine which resources a user can access

to keep track of the actions of a user

to provide challenge and response questions

stateful packet inspection

URL filtering

application filtering

packet filtering

confidentiality with IPsec

stronger password requirement

random one-time port connection

login information and data encryption

detecting and blocking of attacks in real time

connecting global threat information to Cisco network security devices

authenticating and validating traffic

filtering of nefarious websites

configuring a router with a complete MAC address database to ensure that all frames can be forwarded to the correct destination

configuring a switch with proper security to ensure that all traffic forwarded through an interface is filtered

designing a network to use multiple virtual devices to ensure that all traffic uses the best path through the internetwork

designing a network to use multiple paths between switches to ensure there is no single point of failure