IOS Login Enhancements


Scenario:

You are the security office for the national security team in the Netherlands. One of your colleagues demonstrated you how to perform a dictionary attack on the VTY of one of your routers. You read about the different IOS login enhancements and decide to protect your network a little bit more.

Goals:

  • All IP addresses have been preconfigure for you.
  • Configure OSPF for full connectivity.
  • Configure router Bulldog so it will block all access to the VTY for 50 seconds when there are three failed attempts within 20 seconds. This should not apply for traffic that is sourced from the loopback0 interface on router Guard.
  • Configure router Bulldog so all succesful logins are logged.
  • Configure router Bulldog so there is a delay between login attempts of 5 seconds.

IOS:

c3640-jk9s-mz.124-16.bin

Topology:

IOS Login Enhancements

Video Solution:

Configuration Files

You need to register to download the GNS3 topology file. (Registration is free!)

Once you are logged in you will find the configuration files right here.

Opt In Image
Do you want your CCNA or CCNP Certificate?

The How to Master series helps you to understand complex topics like spanning-tree, VLANs, trunks, OSPF, EIGRP, BGP and more.

Written by René Molenaar - CCIE #41726

You May Also Like

About the Author: Rene Molenaar

René - CCIE #41726 is the creator of GNS3Vault.com where he shares CCNA, CCNP and CCIE R&S labs. He also blogs about networking on http://networklessons.com

1 Comment

Comments are closed.