August 31, 2022

Router Security Procedures

1.0 Purpose

This document describes a required minimal security configuration for all routers and switches connecting to a production network or used in a production capacity at or on behalf of .

2.0 Scope

All routers and switches connected to production networks are affected. Routers and switches within internal, secured labs are not affected. Routers and switches within DMZ areas fall under the Internet DMZ Equipment Policy.

3.0 Definitions

Terms in the policy and their meaning

4.0 Procedures

Every router must meet the following configuration standards:

1. No local user accounts are configured on the router. Routers must use TACACS+ for all user authentications.

2. The enable password on the router must be kept in a secure encrypted form. The router must have the enable password set to the current production router password from the router’s support organization.

3. Disallow the following: a. IP directed broadcasts b. Incoming packets at the router sourced with invalid addresses such as RFC1918 address

c. TCP small services

d. UDP small services

e. All source routing

f. All web services running on router

4. Use corporate standardized SNMP community strings.

5. Access rules are to be added as business needs arise.

6. The router must be included in the corporate enterprise management system with a designated point of contact.

7. Each router must have the following statement posted in clear view:

“UNAUTHORIZED ACCESS TO THIS NETWORK DEVICE IS PROHIBITED.

You must have explicit permission to access or configure this device. All activities performed on this device may be logged, and violations of this policy may result in disciplinary action, and may be reported to law enforcement. There is no right to privacy on this device.”

5.0 Enforcement

Any employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment. 6.0 Revision History October 10, 2010: Initial Publication

Collepals.com Plagiarism Free Papers

Are you looking for custom essay writing service or even dissertation writing services? Just request for our write my paper service, and we'll match you with the best essay writer in your subject! With an exceptional team of professional academic experts in a wide range of subjects, we can guarantee you an unrivaled quality of custom-written papers.

Get ZERO PLAGIARISM, HUMAN WRITTEN ESSAYS

Why Hire Collepals.com writers to do your paper?

Quality- We are experienced and have access to ample research materials.

We write plagiarism Free Content

Confidential- We never share or sell your personal information to third parties.

Support-Chat with us today! We are always waiting to answer all your questions.

Router Security Procedures

Related Posts

Identify properties characteristic of alkenes, cycloalkenes, alkynes, and aromatics

Write a college-level learning narrative about two specific skills or concepts from this course that are useful to a current or future employer. Rese

You are working as an IT security professional for an organization (called Website 101) that has 300 employees and one large corporate office with th