cfg to roll back the router to the pre-AutoSecure
con?¬?guration. This will apply all necessary additions and deletions to replace
the current running con?¬?guration (which may be corrupt) with the contents of the
speci?¬?ed con?¬?guration ?¬?le, which is assumed to be a complete con?¬?guration, not
a partial con?¬?guration.
In Cisco IOS releases prior to 12.3(8T)??”Save the running con?¬?guration to
NVRAM ?¬?rst with the copy running-con?¬?g startup-con?¬?g command before running
AutoSecure. There is no rollback feature available.
Locking Down Routers with Cisco SDM
There are two options for securing your router using Cisco Router and Security Device
Manager (SDM):
??? SDM Security Audit Wizard??”Compares router con?¬?gurations to a prede?¬?ned
checklist of best practices. After comparison, a Report Card is displayed that shows a
list of possible security problems. You then choose the vulnerabilities that you would
like to lock down.
??? One-Step Lockdown??”Initiates an automatic lockdown using recommended settings.
SDM Security Audit Wizard
As shown in Figure 5-1, from the home page of SDM, click the Con?¬?gure button at the top
of the page, and then click the Security Audit icon in the Tasks toolbar.
Pages:
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83