This chapter covers the following topics:
General Implementation Recommendations
Using the ISP Router in Medium-Sized Networks
Using the Edge Router in Medium-Sized Networks
Using the Cisco IOS Firewall Router in Medium-Sized Networks
Using the PIX Firewall in Medium-Sized Networks
Network Intrusion Detection System Overview
VPN 3000 Series Concentrator Overview
Configuring the Layer 3 Switch
In Chapter 15, "Designing Medium-Sized SAFE Networks," you looked in detail at the design requirements and guidelines that are recommended to secure the medium-sized network. In this chapter, you use an understanding of those design recommendations to examine the specific configuration requirements to achieve the desired functionality for each component of the medium-sized network.
The configuration that is shown in this chapter highlights only the code that is required to achieve the specific security requirements of the design that is under discussion. Complete configurations are not shown, nor are all the available options for a specific feature discussed.
It is also assumed that you are familiar with the devices that are used in the medium-sized network implementation and, in particular, have an understanding of the commands and tasks that are required to configure the various devices that are detailed in this chapter.