Docstoc

Network Routers

Document Sample
Network Routers Powered By Docstoc
					                                            THE E-SECURITY TOOLKIT




                                    Network Routers



This module addresses the security issues pertaining to the use and maintenance of network routers.

This guide comprises a simple selection of recommendations and basic security practices for a small business network.
It is not a panacea of all appropriate security practices, nor are all the questions listed appropriate for every environment.
However, by utilizing the guide it should be possible to begin the process of securing your network if appropriate security
controls are not currently in place.




                                                          Page 1 of 8
                                     THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 1 - Completion is REQUIRED. Please select only ONE response.

On average, how old are the routers which are connected to the communications network ?


   Less Than Two Years                                                       Go to question 3
   Two To Five Years                                                         Go to question 3
   Five to Eight Years
   More Than Eight Years

Question 2 - Completion is REQUIRED. Please select only ONE response.

Are there any immediate plans to replace the primary network routers with new units ?


   No
   Yes - Within 2 Years
   Yes - Within The Next 12 Month
   Yes - Imminent

Question 3 - Completion is REQUIRED. Please select only ONE response.

What is the average frequency of failure of the network routers ?


   Once Per Week
   Once Per Fortnight
   Once Per Month
   Once Per Quarter
   Once Per Six Months
   Once Per Year
   Less Frequent Yearly




                                                 Page 2 of 8
                                      THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 4 - Completion is REQUIRED. Please select only ONE response.

Is all maintenance work on the network routers:


   Procedurally Controlled
   Pre-Authorized
   Procedurally Controlled & Authorized
   Not Procedurally Controlled or Authorized
   Not Applicable

Question 5 - Completion is REQUIRED. Please select only ONE response.

Is the maintenance of the network routers ever carried out while in production use ?


   Yes
   Yes - But Meant To Be
   No

Question 6 - Completion is REQUIRED. Please select only ONE response.

Is preventative maintenance carried out on the network routers in accordance with manufacturer's
recommendations ?

   No
   Main Components Only
   Yes

Question 7 - Completion is REQUIRED. Please select only ONE response.

Are there back-up arrangements to cater for the failure of ALL critical network routers ?


   Yes
   No




                                                  Page 3 of 8
                                      THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 8 - Completion is REQUIRED. Please select only ONE response.

Under normal operating conditions, at what capacity are the primary network routers used ?


   0% - 25%
   26% - 50%
   51% - 75%
   76% - 99%
   100%

Question 9 - Completion is REQUIRED. Please select only ONE response.

Are the primary network routers also used as back-up devices for other primary devices ?


   No
   Yes

Question 10 - Completion is REQUIRED. Please select only ONE response.

Are the network routers located in physically secure environments ?


   Yes
   Some Of Them
   No

Question 11 - Completion is REQUIRED. Please select only ONE response.

Is remote access to the management port strictly restricted?


   Yes
   No
   Not Applicable




                                                  Page 4 of 8
                                      THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 12 - Completion is REQUIRED. Please select only ONE response.

Is the management port connected out of band?


   No
   Yes
   Not Applicable

Question 13 - Completion is REQUIRED. Please select only ONE response.

Is the enable (admin) password set and changed from its default?


   Yes
   No
   Not Applicable

Question 14 - Completion is REQUIRED. Please select only ONE response.

Is the login password set and changed from its default ?


   Yes
   No
   Not Applicable

Question 15 - Completion is REQUIRED. Please select only ONE response.

If running a dynamically updated routing protocol (such as RIP), is the router configured to only listen to
updates from other trusted routers?

   Yes
   No
   Not Applicable




                                                  Page 5 of 8
                                    THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 16 - Completion is REQUIRED. Please select only ONE response.

Is the modem used on the management port (if applicable) a dial-back modem?


   No
   Yes
   Not Applicable / No Modem

Question 17 - Completion is REQUIRED. Please select only ONE response.

Is inline configuration disabled?


   Yes
   No
   Not Applicable

Question 18 - Completion is REQUIRED. Please select only ONE response.

Has the SNMP community name been changed from the default to restrict access to the SNMP SET
function?

   Yes
   No
   Not Applicable

Question 19 - Completion is REQUIRED. Please select only ONE response.

How often is the configuration password changed?


   Daily
   Weekly
   Monthly
   Never
   Not Applicable




                                              Page 6 of 8
                                      THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 20 - Completion is REQUIRED. Please select only ONE response.

How often is the login password changed?


   Daily
   Weekly
   Monthly
   Never
   Not Applicable

Question 21 - Completion is REQUIRED. Please select only ONE response.

Are one time passwords used to access the configuration/login ?


   Yes
   No
   Don't Know
   Not Applicable

Question 22 - Completion is REQUIRED. Please select only ONE response.

How often is the router configuration checked for integrity ?


   Hourly
   Daily
   Weekly
   Never




                                                 Page 7 of 8
                                     THE E-SECURITY TOOLKIT




Question Module: COMSMSGR - Network Routers


Question 23 - Completion is REQUIRED. Please select only ONE response.

How often are the trusted peer routers in the dynamic routing network validated?


   Every Minute
   Hourly
   Daily
   Never
   Not Applicable




                                                Page 8 of 8

				
DOCUMENT INFO