- Monitor networks boundaries for attacks.
- Ensure that routers are not converting layer 3 broadcasts into layer 2 broadcasts. The Cisco command to disable this is: no ip directed-broadcast. This is the default setting for routers that use IOS version 12.0 or greater.
- Restrict routers to allow only the use of ports that are necessary for the site to function.
- Disable unnecessary or optional services (i.e.: Client for Microsoft Networks on a IIS server)
- Enable TCP/IP filtering and restrict access to only the ports that are necessary for the server to function. (see Knowledge Base article 150543: WinNT, Terminal Server, & Exchange Services Use TCP/IP Ports for a list of ports that Windows services use)
- Unbind NetBIOS over TCP/IP where it is not needed.
- Configure static IP addresses and parameters for public adapters.
- Configure registry settings for maximum protection
Security Measurements for Network Attacks
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment