|
Title |
Date |
Description |
Download |
|
Juniper |
|
|
|
|
|
JUNOS Secure Template
|
03/30/2005
updated
|
A
detailed configuration template describing how to secure
a Juniper router running JUNOS 4.3R3 and above.
|
PDF 51k |
HTML |
|
JUNOS
Secure BGP Template
|
03/30/2005
updated
|
A
detailed configuration template describing how to secure
BGP on a Juniper router running JUNOS 4.3R3 and above.
|
PDF 54k |
HTML |
|
Application Note: Securing BGP on Juniper Routers
|
03/30/2005
updated |
An
application note based on the "JUNOS
Secure BGP Template" that covers in detail the steps
necessary to fully secure a BGP configuration on Juniper
Routers. |
PDF 74k |
HTML |
|
JUNOS
RADIUS Authentication
|
11/19/2001
|
Describes how to
troubleshoot and configure JUNOS RADIUS Authentication with
Funk Steel-Belted Radius.
|
PDF
78k |
HTML |
|
JUNOS
Upto v. Through Route-filter
|
05/21/2001
|
Covers the major differences between these two match types. |
PDF 55k |
HTML |
|
JUNOS
Loose ISP Prefix Filter Template |
03/30/2005
updated |
Template
designed as a getting started guide for ISP prefix
filtering based on loose prefix allocation guidelines. |
PDF 26k |
HTML |
|
JUNOS
Strict ISP Prefix Filter Template |
03/30/2005
updated |
Template
designed as a getting started guide for ISP prefix
filtering based on strict prefix allocation guidelines. |
PDF 26k |
HTML |
|
Cisco |
|
|
|
|
|
Catalyst Secure Template |
11/01/2002
|
A detailed
configuration template describing how to secure a Cisco
Catalyst switch running IOS 12.0 and above.
|
PDF 64k |
HTML |
|
Cisco
Local Director Abstract
|
09/17/2000
|
Reviews a few design options along with several helpful
troubleshooting methods under microcode v 3.1.
|
PDF
23k |
HTML |
|
Networking |
|
|
|
|
|
Golden
Networks |
11/27/2002
|
Dynamic
resource that checks for the Golden Networks on a daily
basis and includes the all top level domains minus the CC
tlds. |
|
HTML |
|
RIPE-210
Addendum
|
09/29/2001
|
Provides
additional information regarding the original RIPE-210 publication
surrounding the updating of DNS netblocks within standard
BGP damping parameters.
|
PDF 22k |
HTML |
|
ICMP
redirects are ba'ad mkay? |
06/29/2002 |
Brief
review of what ICMP redirects are and why we should avoid
them. |
PDF 43k |
HTML |
|
Firewalls |
|
|
|
|
|
FW-1
State Synchronization & ACK Protection
|
08/07/2000
|
Reviews
implications of enabling state synchronization and ACK
protection with Checkpoint Firewall-1 v 4.0 running on a
Nokia platform.
|
PDF 22k |
HTML |
|
Maximizing Firewall Availability
|
10/15/2002
|
A paper covering attacks
directed at stateful firewalls and countermeasures for mitigation.
Led to CERT VU#
539363.
|
PDF 134k |
HTML |
|
Application Note: Hardening Netscreen Firewalls
|
07/10/2002 |
A
detailed configuration template summarizing the steps
necessary to harden ScreenOS 3.1 configurations. |
PDF
84k |
HTML |
|
ScreenOS
Hidden Commands Revealed |
12/10/2002
|
A
command-line reference guide that describes as many
undocumented ScreenOS commands as possible for those
administrators who just can't get enough. |
PDF
30k |
HTML |
|
Security |
|
|
|
|
|
PGP Key Verification
|
08/26/2002
|
A brief paper describing secure methods of proper
retrieval and authenticity verification of newly received
PGP keys with examples using PGP Freeware and GnuPG.
|
PDF 34k |
HTML |
|
|
|
|
|
|
Below
are a few documents that I find valuable written by personal
friends and posted with their permission.
|
|
|
|
|
|
|
|
Title |
Date |
Description |
Download |
|
Nokia / FW-1 |
|
|
|
Nokia
HA Installation
|
02/28/2000
|
Document describing how to configure a Nokia IP 650 out of the box and enable
HA. This is just a bunch of text to make
|
PDF 85k |
HTML |
|
Wireless Security |
|
|
|
Securing
Wireless Networks
|
04/30/2001
|
Overview of wireless networking security options
available.
|
PDF
29k |
HTML |
