The document discusses securing the infrastructure of a network by protecting its management, control, and data functions. The management function allows administrators secure communication and log/report access using SSH sessions, encryption, and login restrictions. The control function authenticates routing protocols and directs traffic to the router's IP. The data function forwards transit packets securely using ACLs, port security, firewalls and IDS/IPS.
The document discusses securing the infrastructure of a network by protecting its management, control, and data functions. The management function allows administrators secure communication and log/report access using SSH sessions, encryption, and login restrictions. The control function authenticates routing protocols and directs traffic to the router's IP. The data function forwards transit packets securely using ACLs, port security, firewalls and IDS/IPS.
The document discusses securing the infrastructure of a network by protecting its management, control, and data functions. The management function allows administrators secure communication and log/report access using SSH sessions, encryption, and login restrictions. The control function authenticates routing protocols and directs traffic to the router's IP. The data function forwards transit packets securely using ACLs, port security, firewalls and IDS/IPS.
Function/Plane administrator to CCP, protocol, AAA, communicate with Syslog, Login device ,and receive restrictions/timeout, reports/log Route Based Access messages Control (RBAC),Secure NTP Control Device has to Routing Authenticate routing Function/Plane devote personal protocol Protocols, Control Plane attenuation (CPU), updates/keep Policing/Protection because something alive, Traffic features is needed directly Directed to from the device the IP address of the router Data Moving/forwarding All the traffic ACLS, Function/Plane packets for others that the Port Security ,Firewalls, (transit packets) device is IDS/IPS such as from one forwarding, end device to between 2 another hosts