In this chapter, you were introduced to several features of basic Cisco IOS Software and Catalyst 3550 security. On routers, these features include the following:
Disabling unnecessary services
Setting up secure HTTP and NTP services
On 3550 switches, controlling traffic on ports was also discussed.
For some of you, the basic IOS security features might have seemed too basic. Remember, however, that these service features are essential to overall network security and are, or might become, an integral part of the CCIE Security lab exam. Likewise, the HTTP and NTP case studies were included to demonstrate how you can apply security to various Cisco IOS Software services. You can consult plenty of references to find out more information. Some of them are suggested in the Appendix E, "Security-Related RFCs and Publications."
This chapter was designed to make you comfortable with basic IOS security and to help you realize that network security can be enhanced with as few as one or two commands.