Chapter 24 Security Audit
Welcome Page
24-4
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
• Disable IP Unreachables
• Disable IP Mask Reply
• Disable IP Unreachables on NULL Interface
• Enable Unicast RPF on Outside Interfaces
• Enable Firewall on All of the Outside Interfaces
• Set Access Class on HTTP Server Service
• Set Access Class on VTY Lines
• Enable SSH for Access to the Router
Welcome Page
This screen describes the Security Audit wizard and the changes the wizard will
attempt to make to your router configuration.
Interface Selection Page
This screen displays a list of all interfaces and requires you to identify which
router interfaces are “outside” interfaces, that is, interfaces that connect to
unsecure networks such as the Internet. By identifying which interfaces are
outside interfaces, Security Configuration knows on which interfaces to configure
firewall security features.
Interface Column
This column lists each of the router interfaces.
Outside Column
This column displays a check box for each interface listed in the Interface column.
Check the check box for each interface that connects to a network outside of your
network, such as the Internet.