The router has several security features set on it one of the most basic and important ones for any network is the basic hardening of the device. Hardening a device simply means using encryption methods and setting passwords and having un-used ports shut down. The basis for this can be seen in appendix IV where you can see I have used such commands and ‘service password-encryption’ this command then makes every password I use on the router encrypted unless I say otherwise or make use a follow up command to use a certain type of encryption. This has been when using the local login in account which overrides the basic console interface login. We would set this password as the use of too many passwords may be discouraged as we can get them confused when changing them in documentation or even worse if we…show more content… Some other basic hardening with have utilised is such things as a banner system which warn attackers. Giving us the ability to legal action if required. Basic hardening of device is something that should be done at all times by any security administrator as is the first set to prevent attacks and that is why I have decided to implement across this device. Some other things that could be implemented to router that aren’t necessary at this point are things like MD5 authentication if routing protocols are implemented we can have encrypted authentication methods between devices to hide routing tables. See Appendix III & VIII
Another thing configured on the routing for security is the Site-to-Site VPN. This is essentially a tunnel that allows for data to be passed through in an encrypted method as long as the device it intends to communicate with on the other end has the correct configuration. The site-to-site VPN
