Vous êtes sur la page 1sur 4

Audit Security Cisco router dengan Nipper - Network World http://tunggul.staff.uns.ac.id/2008/08/11/audit-security-cisco-router-denga...

Network World
Catatan Network Ku

« Freebsd tips : Finding PCI Device


Tuning Linux kernel to improve network performance »

Audit Security Cisco router dengan Nipper

Nipper adalah open source network devices security auditing tool.


Nipper tidak hanya bisa mengaudit security cisco saja tapi bisa juga alat yang lain , dibawah ini adalah daftar yang bisa di
audit oleh nipper :

* Cisco switches (IOS)


* Cisco routers (IOS)
* Cisco firewalls (PIX, ASA, FWSM)
* Cisco Catalyst switches (NMP, CatOS, IOS)
* Cisco Content Service Switches (CSS)
* Juniper NetScreen Firewalls (ScreenOS)

Cara gunakan Nipper

sebagai contoh saya menggunakan cisco router 2600, download nipper di sourceforge.net
Kemudian ambil konfigurasi cisco router bisa dengan cara login ke router dengan telnet, kemudian melalui perintah show
running-configuration copy dan paste output ke Notepad, dan save ke local PC misal di folder C:\nipper .
atau bisa juga menggunakan tftp.

melalui windows command promt ketikkan perintah berikut :


nipper –ios-router –input=testrouterconfig.txt –output=audit.html

Hasil dari perintah tersebut berupa file html, dalam hal ini nama file = audit.html
buka file tersebut dengan browser. File tersebut berisi :

* A software version that has vulnerabilities and the reference numbers for those vulnerabilities

1 of 4 5/4/2013 10:58 AM
Audit Security Cisco router dengan Nipper - Network World http://tunggul.staff.uns.ac.id/2008/08/11/audit-security-cisco-router-denga...

* Recommendations to disable services that might cause others to be able to access the router
* Commands that you need to enable to secure the router
* Upgrade the router’s IOS needs to prevent vulnerability to a Telnet remote DoS attack and a TCP listener DoS attack.
* Configure the service tcp-keepalives-in command to help prevent a DoS attack.
* Configure timeouts on consoles to prevent anyone from gaining access to the router from a Telnet or console session.
* Configure the HTTP service as secure with HTTPS, and enable authentication.
* Enable logging.

Dari situ bisa ketahuan semua deh kekurangan yang ada di konfigurasi cisco kita, tinggal selanjutnya terserah kita

This entry was posted on Monday, August 11th, 2008 at 2:45 pm and is filed under cisco. You can follow any responses to this entry through the RSS 2.0
feed. You can leave a response, or trackback from your own site.

Leave a Reply

Name (required)

Mail (will not be published) (required)

Website

Anti-spam word: (Required)*


To prove you're a person (not a spam script), type the security word shown in the picture.

Ketik dua kata ini:

2 of 4 5/4/2013 10:58 AM
Audit Security Cisco router dengan Nipper - Network World http://tunggul.staff.uns.ac.id/2008/08/11/audit-security-cisco-router-denga...

Categories
Beasiswa (34)
cisco (1)
database (10)
graphic (6)
Network (55)
NOC UNS (2)
science umum (6)
security (13)
Uncategorized (5)
windows (19)

Recent Posts
Program Research Student 2014
Kisi-kisi Soal Ujian Nasional (UN) SD SMP SMA SMK Sederajat 2013
Tutorial: Import a CSV File Using PHP and MySQL
Materi Matrikulasi MAP UNS

3 of 4 5/4/2013 10:58 AM
Audit Security Cisco router dengan Nipper - Network World http://tunggul.staff.uns.ac.id/2008/08/11/audit-security-cisco-router-denga...

CUD Scholarship Program (Belgium)

Meta
Register
Log in
Entries RSS
Comments RSS
WordPress.org

Pages
backlink
coba page
google-search

Blogroll
Home

Tags

apache Beasiswa beasiswa 2008 beasiswa 2009 beasiswa s2 beasiswa s2 2009 bind
cari beasiswa dns cache dns server firefox freebsd howto howto freebsd howto linux howto mysql howto
photoshop howto php howto wordpress info beasiswa install install apache install wordpress linux mysql mysql
server photoshop php router sekolah snmp ssh ssh server top tuning mysql tutorial tutorial freebsd tutorial linux tutorial mysql ubuntu
window windows window vista window xp wordpress

Copyright © Network World - Powered by WordPress


ProSense theme created by Dosh Dosh and The Wrong Advices.

4 of 4 5/4/2013 10:58 AM