1. Home
  2. Networking
  3. Router firewall security

Chapter 16. Intrusion-Detection System

Part VI, "Managing Access Through Routers," covered Cisco IOS features and tools that you can use to manage traffic better as it travels through your router. That part focused primarily on authentication: lock-and-key ACLs, authentication proxy, and routing authentication with MD5. This part focuses on detecting and, in some cases, preventing certain kinds of attacks, as well as logging information to help you determine when and how an attack occurred.

This chapter focuses on the capability of the Cisco IOS to detect attacks with the intrusion-detection system (IDS) feature of the Cisco IOS Firewall. The following topics are covered in this chapter:

  • IDS introduction

  • IDS signatures

  • Cisco router IDS solution

  • IDS configuration

  • IDS examples



    		Part I: Security Overview and Firewalls
    		Part II: Managing Access to Routers
    		Part III: Nonstateful Filtering Technologies
    		Part IV: Stateful and Advanced Filtering Technologies
    		Part V: Address Translation and Firewalls
    		Part VI: Managing Access Through Routers
    		Part VII: Detecting and Preventing Attacks
    		Chapter 16. Intrusion-Detection System
    		IDS Introduction
    		IDS Signatures
    		Cisco Router IDS Solution
    		IDS Configuration
    		IDS Example
    		Summary
    		Chapter 17. DoS Protection
    		Chapter 18. Logging Events
    		Part VIII: Virtual Private Networks
    		Part IX: Case Study