Download or read book Network Security Technologies and Solutions CCIE Professional Development Series written by Yusuf Bhaiji and published by Pearson Education. This book was released on 2008-03-20 with total page 700 pages. Available in PDF, EPUB and Kindle. Book excerpt: CCIE Professional Development Network Security Technologies and Solutions A comprehensive, all-in-one reference for Cisco network security Yusuf Bhaiji, CCIE No. 9305 Network Security Technologies and Solutions is a comprehensive reference to the most cutting-edge security products and methodologies available to networking professionals today. This book helps you understand and implement current, state-of-the-art network security technologies to ensure secure communications throughout the network infrastructure. With an easy-to-follow approach, this book serves as a central repository of security knowledge to help you implement end-to-end security solutions and provides a single source of knowledge covering the entire range of the Cisco network security portfolio. The book is divided into five parts mapping to Cisco security technologies and solutions: perimeter security, identity security and access management, data privacy, security monitoring, and security management. Together, all these elements enable dynamic links between customer security policy, user or host identity, and network infrastructures. With this definitive reference, you can gain a greater understanding of the solutions available and learn how to build integrated, secure networks in today’s modern, heterogeneous networking environment. This book is an excellent resource for those seeking a comprehensive reference on mature and emerging security tactics and is also a great study guide for the CCIE Security exam. “Yusuf’s extensive experience as a mentor and advisor in the security technology field has honed his ability to translate highly technical information into a straight-forward, easy-to-understand format. If you’re looking for a truly comprehensive guide to network security, this is the one! ” –Steve Gordon, Vice President, Technical Services, Cisco Yusuf Bhaiji, CCIE No. 9305 (R&S and Security), has been with Cisco for seven years and is currently the program manager for Cisco CCIE Security certification. He is also the CCIE Proctor in the Cisco Dubai Lab. Prior to this, he was technical lead for the Sydney TAC Security and VPN team at Cisco. Filter traffic with access lists and implement security features on switches Configure Cisco IOS router firewall features and deploy ASA and PIX Firewall appliances Understand attack vectors and apply Layer 2 and Layer 3 mitigation techniques Secure management access with AAA Secure access control using multifactor authentication technology Implement identity-based network access control Apply the latest wireless LAN security solutions Enforce security policy compliance with Cisco NAC Learn the basics of cryptography and implement IPsec VPNs, DMVPN, GET VPN, SSL VPN, and MPLS VPN technologies Monitor network activity and security incident response with network and host intrusion prevention, anomaly detection, and security monitoring and correlation Deploy security management solutions such as Cisco Security Manager, SDM, ADSM, PDM, and IDM Learn about regulatory compliance issues such as GLBA, HIPPA, and SOX This book is part of the Cisco CCIE Professional Development Series from Cisco Press, which offers expert-level instr

Download or read book Network Security Architectures written by Sean Convery and published by Cisco Press. This book was released on 2004 with total page 802 pages. Available in PDF, EPUB and Kindle. Book excerpt: Using case studies complete with migration plans that show how to modify examples into your unique network, this work takes the mystery out of network security by using proven examples of sound security best practices.

Download or read book Network Security Auditing written by Chris Jackson and published by Cisco Press. This book was released on 2010-06-02 with total page 700 pages. Available in PDF, EPUB and Kindle. Book excerpt: This complete new guide to auditing network security is an indispensable resource for security, network, and IT professionals, and for the consultants and technology partners who serve them. Cisco network security expert Chris Jackson begins with a thorough overview of the auditing process, including coverage of the latest regulations, compliance issues, and industry best practices. The author then demonstrates how to segment security architectures into domains and measure security effectiveness through a comprehensive systems approach. Network Security Auditing thoroughly covers the use of both commercial and open source tools to assist in auditing and validating security policy assumptions. The book also introduces leading IT governance frameworks such as COBIT, ITIL, and ISO 17799/27001, explaining their values, usages, and effective integrations with Cisco security products.

Download or read book Network Security Principles and Practices written by Saadat Malik and published by Cisco Press. This book was released on 2003 with total page 826 pages. Available in PDF, EPUB and Kindle. Book excerpt: Expert solutions for securing network infrastructures and VPNs bull; Build security into the network by defining zones, implementing secure routing protocol designs, and building safe LAN switching environments Understand the inner workings of the Cisco PIX Firewall and analyze in-depth Cisco PIX Firewall and Cisco IOS Firewall features and concepts Understand what VPNs are and how they are implemented with protocols such as GRE, L2TP, and IPSec Gain a packet-level understanding of the IPSec suite of protocols, its associated encryption and hashing functions, and authentication techniques Learn how network attacks can be categorized and how the Cisco IDS is designed and can be set upto protect against them Control network access by learning how AAA fits into the Cisco security model and by implementing RADIUS and TACACS+ protocols Provision service provider security using ACLs, NBAR, and CAR to identify and control attacks Identify and resolve common implementation failures by evaluating real-world troubleshooting scenarios As organizations increase their dependence on networks for core business processes and increase access to remote sites and mobile workers via virtual private networks (VPNs), network security becomes more and more critical. In today's networked era, information is an organization's most valuable resource. Lack of customer, partner, and employee access to e-commerce and data servers can impact both revenue and productivity. Even so, most networks do not have the proper degree of security. Network Security Principles and Practices provides an in-depth understanding of the policies, products, and expertise that brings organization to this extremely complex topic and boosts your confidence in the performance and integrity of your network systems and services. Written by a CCIE engineer who participated in the development of the CCIE Security exams, Network Security Principles and Practices is the first book that provides a comprehensive review of topics important to achieving CCIE Security certification. Network Security Principles and Practices is a comprehensive guide to network security threats and the policies and tools developed specifically to combat those threats. Taking a practical, applied approach to building security into networks, the book shows you how to build secure network architectures from the ground up. Security aspects of routing protocols, Layer 2 threats, and switch security features are all analyzed. A comprehensive treatment of VPNs and IPSec is presented in extensive packet-by-packet detail. The book takes a behind-the-scenes look at how the Cisco PIX(r) Firewall actually works, presenting many difficult-to-understand and new Cisco PIX Firewall and Cisco IOSreg; Firewall concepts. The book launches into a discussion of intrusion detection systems (IDS) by analyzing and breaking down modern-day network attacks, describing how an IDS deals with those threats in general, and elaborating on the Cisco implementation of IDS. The book also discusses AAA, RADIUS, and TACACS+ and their usage with some of the newer security implementations such as VPNs and proxy authentication. A complete section devoted to service provider techniques for enhancing customer security and providing support in the event of an attack is also included. Finally, the book concludes with a section dedicated to discussing tried-and-tested troubleshooting tools and techniques that are not only invaluable to candidates working toward their CCIE Security lab exam but also to the security network administrator running the operations of a network on a daily basis.

Download or read book The Art of Network Architecture written by Russ White and published by Cisco Press. This book was released on 2014-04-02 with total page 352 pages. Available in PDF, EPUB and Kindle. Book excerpt: The Art of Network Architecture Business-Driven Design The business-centered, business-driven guide to architecting and evolving networks The Art of Network Architecture is the first book that places business needs and capabilities at the center of the process of architecting and evolving networks. Two leading enterprise network architects help you craft solutions that are fully aligned with business strategy, smoothly accommodate change, and maximize future flexibility. Russ White and Denise Donohue guide network designers in asking and answering the crucial questions that lead to elegant, high-value solutions. Carefully blending business and technical concerns, they show how to optimize all network interactions involving flow, time, and people. The authors review important links between business requirements and network design, helping you capture the information you need to design effectively. They introduce today’s most useful models and frameworks, fully addressing modularity, resilience, security, and management. Next, they drill down into network structure and topology, covering virtualization, overlays, modern routing choices, and highly complex network environments. In the final section, the authors integrate all these ideas to consider four realistic design challenges: user mobility, cloud services, Software Defined Networking (SDN), and today’s radically new data center environments. • Understand how your choices of technologies and design paradigms will impact your business • Customize designs to improve workflows, support BYOD, and ensure business continuity • Use modularity, simplicity, and network management to prepare for rapid change • Build resilience by addressing human factors and redundancy • Design for security, hardening networks without making them brittle • Minimize network management pain, and maximize gain • Compare topologies and their tradeoffs • Consider the implications of network virtualization, and walk through an MPLS-based L3VPN example • Choose routing protocols in the context of business and IT requirements • Maximize mobility via ILNP, LISP, Mobile IP, host routing, MANET, and/or DDNS • Learn about the challenges of removing and changing services hosted in cloud environments • Understand the opportunities and risks presented by SDNs • Effectively design data center control planes and topologies

Download or read book Designing Network Security written by Merike Kaeo and published by . This book was released on 1999 with total page 454 pages. Available in PDF, EPUB and Kindle. Book excerpt: Corporate network security issues still very much fill the media today. "Designing Network Security" offers a practical approach to the implementation of secure network design, offering the additional bonus of Cisco specific perspectives and case studies.

Download or read book Network Security Fundamentals written by Gert De Laet and published by Cisco Press. This book was released on 2005 with total page 481 pages. Available in PDF, EPUB and Kindle. Book excerpt: An introduction to the world of network security, this work shows readers how to learn the basics, including cryptography, security policies, and secure network design.

Download or read book Managing Cisco Network Security written by Michael J. Wenstrom and published by . This book was released on 2001 with total page 0 pages. Available in PDF, EPUB and Kindle. Book excerpt: Learn how to secure your network with the official MCNS Coursebook

Download or read book Cisco Firewalls written by Alexandre M.S.P. Moraes and published by Cisco Press. This book was released on 2011-06-06 with total page 1096 pages. Available in PDF, EPUB and Kindle. Book excerpt: Cisco Firewalls Concepts, design and deployment for Cisco Stateful Firewall solutions ¿ “ In this book, Alexandre proposes a totally different approach to the important subject of firewalls: Instead of just presenting configuration models, he uses a set of carefully crafted examples to illustrate the theory in action.¿A must read!” —Luc Billot, Security Consulting Engineer at Cisco ¿ Cisco Firewalls thoroughly explains each of the leading Cisco firewall products, features, and solutions, and shows how they can add value to any network security design or operation. The author tightly links theory with practice, demonstrating how to integrate Cisco firewalls into highly secure, self-defending networks. Cisco Firewalls shows you how to deploy Cisco firewalls as an essential component of every network infrastructure. The book takes the unique approach of illustrating complex configuration concepts through step-by-step examples that demonstrate the theory in action. This is the first book with detailed coverage of firewalling Unified Communications systems, network virtualization architectures, and environments that include virtual machines. The author also presents indispensable information about integrating firewalls with other security elements such as IPS, VPNs, and load balancers; as well as a complete introduction to firewalling IPv6 networks. Cisco Firewalls will be an indispensable resource for engineers and architects designing and implementing firewalls; security administrators, operators, and support professionals; and anyone preparing for the CCNA Security, CCNP Security, or CCIE Security certification exams. ¿ Alexandre Matos da Silva Pires de Moraes, CCIE No. 6063, has worked as a Systems Engineer for Cisco Brazil since 1998 in projects that involve not only Security and VPN technologies but also Routing Protocol and Campus Design, IP Multicast Routing, and MPLS Networks Design. He coordinated a team of Security engineers in Brazil and holds the CISSP, CCSP, and three CCIE certifications (Routing/Switching, Security, and Service Provider). A frequent speaker at Cisco Live, he holds a degree in electronic engineering from the Instituto Tecnológico de Aeronáutica (ITA – Brazil). ¿ ·¿¿¿¿¿¿¿ Create advanced security designs utilizing the entire Cisco firewall product family ·¿¿¿¿¿¿¿ Choose the right firewalls based on your performance requirements ·¿¿¿¿¿¿¿ Learn firewall¿ configuration fundamentals and master the tools that provide insight about firewall operations ·¿¿¿¿¿¿¿ Properly insert firewalls in your network’s topology using Layer 3 or Layer 2 connectivity ·¿¿¿¿¿¿¿ Use Cisco firewalls as part of a robust, secure virtualization architecture ·¿¿¿¿¿¿¿ Deploy Cisco ASA firewalls with or without NAT ·¿¿¿¿¿¿¿ Take full advantage of the classic IOS firewall feature set (CBAC) ·¿¿¿¿¿¿¿ Implement flexible security policies with the Zone Policy Firewall (ZPF) ·¿¿¿¿¿¿¿ Strengthen stateful inspection with antispoofing, TCP normalization, connection limiting, and IP fragmentation handling ·¿¿¿¿¿¿¿ Use application-layer inspection capabilities built into Cisco firewalls ·¿¿¿¿¿¿¿ Inspect IP voice protocols, including SCCP, H.323, SIP, and MGCP ·¿¿¿¿¿¿¿ Utilize identity to provide user-based stateful functionality ·¿¿¿¿¿¿¿ Understand how multicast traffic is handled through firewalls ·¿¿¿¿¿¿¿ Use firewalls to protect your IPv6 deployments ¿ This security book is part of the Cisco Press Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end, self-defending networks.

Download or read book Cisco ISP Essentials written by Barry Raveendran Greene and published by Cisco Press. This book was released on 2002 with total page 454 pages. Available in PDF, EPUB and Kindle. Book excerpt: Cisco® IOS software is extensive and it can often be difficult to navigate through the detailed documentation. Cisco® ISP Essentials takes those elements of IOS software that are of specific interest to ISPs and highlights many of the essential features that are in everyday use in the major ISP backbones. This book not only helps ISPs navigate this complex and detailed world to quickly gather the knowledge they require, but is also helps them harness the full feature-rich value by helping them identify and master those features that are of value to their particular area of interest and need.

Download or read book Top down Network Design written by Priscilla Oppenheimer and published by Cisco Press. This book was released on 2004 with total page 614 pages. Available in PDF, EPUB and Kindle. Book excerpt: A systems analysis approach to enterprise network design Master techniques for checking the health of an existing network to develop a baseline for measuring performance of a new network design Explore solutions for meeting QoS requirements, including ATM traffic management, IETF controlled-load and guaranteed services, IP multicast, and advanced switching, queuing, and routing algorithms Develop network designs that provide the high bandwidth and low delay required for real-time applications such as multimedia, distance learning, and videoconferencing Identify the advantages and disadvantages of various switching and routing protocols, including transparent bridging, Inter-Switch Link (ISL), IEEE 802.1Q, IGRP, EIGRP, OSPF, and BGP4 Effectively incorporate new technologies into enterprise network designs, including VPNs, wireless networking, and IP Telephony Top-Down Network Design, Second Edition, is a practical and comprehensive guide to designing enterprise networks that are reliable, secure, and manageable. Using illustrations and real-world examples, it teaches a systematic method for network design that can be applied to campus LANs, remote-access networks, WAN links, and large-scale internetworks. You will learn to analyze business and technical requirements, examine traffic flow and QoS requirements, and select protocols and technologies based on performance goals. You will also develop an understanding of network performance factors such as network utilization, throughput, accuracy, efficiency, delay, and jitter. Several charts and job aids will help you apply a top-down approach to network design. This Second Edition has been revised to include new and updated material on wireless networks, virtual private networks (VPNs), network security, network redundancy, modularity in network designs, dynamic addressing for IPv4 and IPv6, new network design and management tools, Ethernet scalability options (including 10-Gbps Ethernet, Metro Ethernet, and Long-Reach Ethernet), and networks that carry voice and data traffic. Top-Down Network Design, Second Edition, has a companion website at http://www.topdownbook.com, which includes updates to the book, links to white papers, and supplemental information about design resources. This book is part of the Networking Technology Series from Cisco Press¿ which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

Download or read book Designing Networks and Services for the Cloud written by Huseni Saboowala and published by Cisco Press. This book was released on 2013-05-16 with total page 336 pages. Available in PDF, EPUB and Kindle. Book excerpt: Designing Networks and Services for the Cloud Delivering business-grade cloud applications and services A rapid, easy-to-understand approach to delivering a secure, resilient, easy-to-manage, SLA-driven cloud experience Designing Networks and Services for the Cloud helps you understand the design and architecture of networks and network services that enable the delivery of business-grade cloud services. Drawing on more than 40 years of experience in network and cloud design, validation, and deployment, the authors demonstrate how networks spanning from the Enterprise branch/HQ and the service provider Next-Generation Networks (NGN) to the data center fabric play a key role in addressing the primary inhibitors to cloud adoption–security, performance, and management complexity. The authors first review how virtualized infrastructure lays the foundation for the delivery of cloud services before delving into a primer on clouds, including the management of cloud services. Next, they explore key factors that inhibit enterprises from moving their core workloads to the cloud, and how advanced networks and network services can help businesses migrate to the cloud with confidence. You’ll find an in-depth look at data center networks, including virtualization-aware networks, virtual network services, and service overlays. The elements of security in this virtual, fluid environment are discussed, along with techniques for optimizing and accelerating the service delivery. The book dives deeply into cloud-aware service provider NGNs and their role in flexibly connecting distributed cloud resources, ensuring the security of provider and tenant resources, and enabling the optimal placement of cloud services. The role of Enterprise networks as a critical control point for securely and cost-effectively connecting to high-performance cloud services is explored in detail before various parts of the network finally come together in the definition and delivery of end-to-end cloud SLAs. At the end of the journey, you preview the exciting future of clouds and network services, along with the major upcoming trends. If you are a technical professional or manager who must design, implement, or operate cloud or NGN solutions in enterprise or service-provider environments, this guide will be an indispensable resource. * Understand how virtualized data-center infrastructure lays the groundwork for cloud-based services * Move from distributed virtualization to “IT-as-a-service” via automated self-service portals * Classify cloud services and deployment models, and understand the actors in the cloud ecosystem * Review the elements, requirements, challenges, and opportunities associated with network services in the cloud * Optimize data centers via network segmentation, virtualization-aware networks, virtual network services, and service overlays * Systematically secure cloud services * Optimize service and application performance * Plan and implement NGN infrastructure to support and accelerate cloud services * Successfully connect enterprises to the cloud * Define and deliver on end-to-end cloud SLAs * Preview the future of cloud and network services

Download or read book CCNA Security 210 260 Official Cert Guide written by Omar Santos and published by Cisco Press. This book was released on 2015-09-01 with total page 1442 pages. Available in PDF, EPUB and Kindle. Book excerpt: Trust the best selling Official Cert Guide series from Cisco Press to help you learn, prepare, and practice for exam success. They are built with the objective of providing assessment, review, and practice to help ensure you are fully prepared for your certification exam. --Master Cisco CCNA Security 210-260 Official Cert Guide exam topics --Assess your knowledge with chapter-opening quizzes --Review key concepts with exam preparation tasks This is the eBook edition of the CCNA Security 210-260 Official Cert Guide. This eBook does not include the companion CD-ROM with practice exam that comes with the print edition. CCNA Security 210-260 Official Cert Guide presents you with an organized test-preparation routine through the use of proven series elements and techniques. “Do I Know This Already?” quizzes open each chapter and enable you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. CCNA Security 210-260 Official Cert Guide focuses specifically on the objectives for the Cisco CCNA Security exam. Networking Security experts Omar Santos and John Stuppi share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics. Well regarded for its level of detail, assessment features, comprehensive design scenarios, and challenging review questions and exercises, this official study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time. The official study guide helps you master all the topics on the CCNA Security exam, including --Networking security concepts --Common security threats --Implementing AAA using IOS and ISE --Bring Your Own Device (BYOD) --Fundamentals of VPN technology and cryptography --Fundamentals of IP security --Implementing IPsec site-to-site VPNs --Implementing SSL remote-access VPNs using Cisco ASA --Securing Layer 2 technologies --Network Foundation Protection (NFP) --Securing the management plane on Cisco IOS devices --Securing the data plane --Securing routing protocols and the control plane --Understanding firewall fundamentals --Implementing Cisco IOS zone-based firewalls --Configuring basic firewall policies on Cisco ASA --Cisco IPS fundamentals --Mitigation technologies for e-mail- and web-based threats --Mitigation technologies for endpoint threats CCNA Security 210-260 Official Cert Guide is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit http://www.cisco.com/web/learning/index.html.

Download or read book Cisco Digital Network Architecture written by Tim Szigeti and published by Networking Technology. This book was released on 2019 with total page 0 pages. Available in PDF, EPUB and Kindle. Book excerpt: The complete guide to transforming enterprise networks with Cisco DNA As networks become more complex and dynamic, organizations need better ways to manage and secure them. With the Cisco Digital Network Architecture, network operators can run entire network fabrics as a single, programmable system by defining rules that span their devices and move with their users. Using Cisco intent-based networking, you spend less time programming devices, managing configurations, and troubleshooting problems so you have more time for driving value from your network, your applications, and most of all, your users. This guide systematically introduces Cisco DNA, highlighting its business value propositions, design philosophy, tenets, blueprints, components, and solutions.Combining insider information with content previously scattered through multiple technical documents, it provides a single source for evaluation, planning, implementation, and operation. The authors bring together authoritative insights for multiple business and technical audiences. Senior executives will learn how DNA can help them drive digital transformation for competitive advantage. Technical decision-makers will discover powerful emerging solutions for their specific needs. Architects will find essential recommendations, interdependencies, and caveats for planning deployments. Finally, network operators will learn how to use DNA Center's modern interface to streamline, automate, and improve virtually any network management task. · Accelerate the digital transformation of your business by adopting an intent-based network architecture that is open, extensible, and programmable · Integrate virtualization, automation, analytics, and cloud services to streamline operations and create new business opportunities · Dive deep into hardware, software, and protocol innovations that lay the programmable infrastructure foundation for DNA · Virtualize advanced network functions for fast, easy, and flexible deployments · Translate business intent into device configurations and simplify, scale, and automate network operations using controllers · Use analytics to tune performance, plan capacity, prevent threats, and simplify troubleshooting · Learn how Software-Defined Access improves network flexibility, security, mobility, visibility, and performance · Use DNA Assurance to track the health of clients, network devices, and applications to reveal hundreds of actionable insights · See how DNA Applic...

Download or read book Data Center Fundamentals written by Mauricio Arregoces and published by Cisco Press. This book was released on 2003-12-04 with total page 1114 pages. Available in PDF, EPUB and Kindle. Book excerpt: Master the basics of data centers to build server farms that enhance your Web site performance Learn design guidelines that show how to deploy server farms in highly available and scalable environments Plan site performance capacity with discussions of server farm architectures and their real-life applications to determine your system needs Today's market demands that businesses have an Internet presence through which they can perform e-commerce and customer support, and establish a presence that can attract and increase their customer base. Underestimated hit ratios, compromised credit card records, perceived slow Web site access, or the infamous "Object Not Found" alerts make the difference between a successful online presence and one that is bound to fail. These challenges can be solved in part with the use of data center technology. Data centers switch traffic based on information at the Network, Transport, or Application layers. Content switches perform the "best server" selection process to direct users' requests for a specific service to a server in a server farm. The best server selection process takes into account both server load and availability, and the existence and consistency of the requested content. Data Center Fundamentals helps you understand the basic concepts behind the design and scaling of server farms using data center and content switching technologies. It addresses the principles and concepts needed to take on the most common challenges encountered during planning, implementing, and managing Internet and intranet IP-based server farms. An in-depth analysis of the data center technology with real-life scenarios make Data Center Fundamentals an ideal reference for understanding, planning, and designing Web hosting and e-commerce environments.

Download or read book Network Security Architectures cisco Press written by Sean Convery and published by . This book was released on 2004 with total page 739 pages. Available in PDF, EPUB and Kindle. Book excerpt:

Download or read book Securing Cisco IP Telephony Networks written by Akhil Behl and published by Cisco Press. This book was released on 2012-08-31 with total page 1155 pages. Available in PDF, EPUB and Kindle. Book excerpt: The real-world guide to securing Cisco-based IP telephony applications, devices, and networks Cisco IP telephony leverages converged networks to dramatically reduce TCO and improve ROI. However, its critical importance to business communications and deep integration with enterprise IP networks make it susceptible to attacks that legacy telecom systems did not face. Now, there’s a comprehensive guide to securing the IP telephony components that ride atop data network infrastructures–and thereby providing IP telephony services that are safer, more resilient, more stable, and more scalable. Securing Cisco IP Telephony Networks provides comprehensive, up-to-date details for securing Cisco IP telephony equipment, underlying infrastructure, and telephony applications. Drawing on ten years of experience, senior network consultant Akhil Behl offers a complete security framework for use in any Cisco IP telephony environment. You’ll find best practices and detailed configuration examples for securing Cisco Unified Communications Manager (CUCM), Cisco Unity/Unity Connection, Cisco Unified Presence, Cisco Voice Gateways, Cisco IP Telephony Endpoints, and many other Cisco IP Telephony applications. The book showcases easy-to-follow Cisco IP Telephony applications and network security-centric examples in every chapter. This guide is invaluable to every technical professional and IT decision-maker concerned with securing Cisco IP telephony networks, including network engineers, administrators, architects, managers, security analysts, IT directors, and consultants. Recognize vulnerabilities caused by IP network integration, as well as VoIP’s unique security requirements Discover how hackers target IP telephony networks and proactively protect against each facet of their attacks Implement a flexible, proven methodology for end-to-end Cisco IP Telephony security Use a layered (defense-in-depth) approach that builds on underlying network security design Secure CUCM, Cisco Unity/Unity Connection, CUPS, CUCM Express, and Cisco Unity Express platforms against internal and external threats Establish physical security, Layer 2 and Layer 3 security, and Cisco ASA-based perimeter security Complete coverage of Cisco IP Telephony encryption and authentication fundamentals Configure Cisco IOS Voice Gateways to help prevent toll fraud and deter attacks Secure Cisco Voice Gatekeepers and Cisco Unified Border Element (CUBE) against rogue endpoints and other attack vectors Secure Cisco IP telephony endpoints–Cisco Unified IP Phones (wired, wireless, and soft phone) from malicious insiders and external threats This IP communications book is part of the Cisco Press® Networking Technology Series. IP communications titles from Cisco Press help networking professionals understand voice and IP telephony technologies, plan and design converged networks, and implement network solutions for increased productivity.