Network Administrators Survival Guide
暫譯: 網路管理員生存指南

Anand Deveriya

Network Administrators Survival Guide
  • 出版商: Cisco Press
  • 出版日期: 2005-10-02
  • 售價: $2,900
  • 貴賓價: 9.5$2,755
  • 語言: 英文
  • 頁數: 552
  • 裝訂: Paperback
  • ISBN: 1587052113
  • ISBN-13: 9781587052118

    • 已過版

買這商品的人也買了...

商品描述

Description:

The all-in-one practical guide to supporting your Cisco network

 

  • Provides detailed tips for using freeware and open-source tools readily available from the Internet, including the reasons behind choosing a particular tool
  • Refer to a single source for common Cisco network administration issues
  • Dedicated section for network security aids administrators in effectively dealing with security issues
  • Deploy fully functional RADIUS and TACACS+ for servers for controlling access to Cisco devices
  • Deploy Linux- and Windows-based syslog servers to centrally collect syslog information generated by Cisco devices
  • Deploy Linux- and Windows-based network monitoring systems to monitor interface traffic through Cisco devices including routers, switches, VPN concentrators, and Cisco PIX® firewalls
  • Use the trending feature of network monitoring systems for long-term network analysis and capacity planning
  • Automatically detect and report configuration changes on Cisco IOS® Software-based devices and Cisco PIX firewalls
  • Deploy Cisco-based VPNs in mixed environments using Linux- and Windows-based VPN servers

 Network Administrators Survival Guide solves many common network administration problems by providing administrators with an all-in-one practical guide to supporting Cisco® networks using freeware tools. It is a single reference source that explains particular issues, their significance for administrators, and the installation and configuration process for the tools. The solutions are Cisco centric and provide detail not available in generic online information. Network Administrators Survival Guide emphasizes solutions for network managers and administrators of small to medium-sized businesses and enterprises.

 

Each chapter is broadly based on a network administration function, starting with an overview of the topic, followed by the methodology involved to accomplish that function. This includes the tools available, why they are the right choice, and their installation, configuration, and usage methods. For any given function, Network Administrators Survival Guide covers both Windows- and Linux-based tools as appropriate. Most of the Windows-based tools offer the advantage of GUI for ease of use, whereas the Linux-based tools are command-line based and can be used in automated scripts. Both are significant for network administrators.

 

Based on author Anand Deveriya’s extensive field experience, this practical guide to maintaining Cisco networks will save you significant time and money. Any network administrator—beginner or advanced—will find this book useful. The solutions to practical aspects of network administration make Network Administrators Survival Guide a must-have reference for supporting your Cisco network.

 

 

 

Table of Contents:

Part I           Basic Network Administration

Chapter 1   Cisco Device Installation

                 Introduction

                 Connecting to Cisco Devices for Configuration

                 Local Connection Using a Console Interface

                 Remote Connection Using Telnet

                 Automating Tasks Using Macros

                 Securing Remote Connections to Cisco Devices Using Secure Shell (SSH)

                 Cisco Device Configuration for SSH

                 SSH Client Installation

                 Configuring Cisco Devices Using GUI Tools

                 HTTP Interface for IOS-Based Devices

                 PIX Device Manager

                 Security Device Manager

                 Other GUI Tools for Configuring Cisco Devices

                 Managing System Files

                 File Management Using a TFTP Server

                 Configuring Cisco Devices to Use TFTP

                 Using an FTP Server for File Management

                 Summary


 

Chapter 2   Basic Network Connectivity

                 Basics of Network Monitoring Tools: ping and traceroute

                 Verifying Network Connectivity Using traceroute

                 Case Study: Using ping and traceroute to Isolate a BGP Meltdown Emergency

                 Observation

                 Conclusions

                 Actions

                 Advanced Network Connectivity Testing Tools

                 Using whois Lookup for Domain Registration Information

                 Using nslookup to Find DNS Information

                 Using netstat for Port and Connection Information

                 Using the MS Windows–Based netstat Command

                 Using the arp Command to Trace Layer 2 Issues

                 Summary

 

Chapter 3   Access Control

                 Overview of AAA Technology

                 TACACS+

                 RADIUS

                 RADIUS and TACACS+ Comparison

                 Using TACACS+ for AAA

                 Deploying a Linux-Based TACACS+ Server

                 Configuring Cisco Routers for TACACS+

                 Configuring a Cisco Switch for TACACS+

                 Configuring Cisco PIX Firewalls for TACACS+

                 Configuring a Cisco VPN Concentrator for TACACS+

                 Using RADIUS for AAA

                 Deploying a Linux-Based RADIUS Server

                 Configuring a Microsoft IAS Server as a RADIUS Server

                 Configuring a Cisco Router for RADIUS

                 Configuring a Cisco Switch for RADIUS

                 Configuring Cisco PIX Firewalls for RADIUS

                 Commercial Products

                 Summary

 

Chapter 4    Using Syslog

                 Overview of Syslog

                 Deploying Syslog Servers

                 Deploying the Default Syslog Daemon

                 Deploying a Linux-Based Syslog-ng Server

                 Configuring a Windows-Based Syslog Server

                 Securing Syslog Servers

                 Configuring Cisco Devices to Use a Syslog Server

                 Configuring Cisco Routers for Syslog

                 Configuring a Cisco Switch for Syslog

                 Configuring a Cisco PIX Firewall for Syslog

                 Configuring a Cisco VPN Concentrator for Syslog

                 Commercial Cisco Products

                 Summary

 

Part II          Network Management Systems (NMS)

Chapter 5   Monitoring Network Availability

                 Network-Monitoring Fundamentals

                 Network-Monitoring Terms

                 Network-Monitoring Techniques

                 Deploying a Network-Monitoring System

                 Deploying a Linux-Based Big Brother Network-Monitoring System

                 Deploying a Windows-Based Big Brother Network-Monitoring System

                 Deploying Nagios for Linux-Based Network Monitoring

                 Adding Redundancy and Security to Network-Monitoring Systems

                 Commercial Cisco Products

                 Summary

 

Chapter 6   Network Performance Monitoring

                 Performance-Monitoring Overview

                 Deploying Network Performance—Monitoring Tools

                 Deploying a Linux-Based Performance-Monitoring System–MRTG

                 Deploying a Windows-Based Performance-Monitoring System–MRTG

                 Performance and Scalability Enhancements

                 RRDTool

                 Cricket

                 Deploying a Windows-Based Performance-Monitoring System–Cacti

                 Configuring Cisco Devices for Performance Monitoring

                 Enabling the SNMP Agent on Cisco Routers

                 Enabling the SNMP Agent on Cisco Switches

                 Enabling the SNMP Agent on a Cisco PIX Firewall

                 Enabling the SNMP Agent on Cisco VPN 3000 Concentrators

                 Securing SNMP

                 Commercial Cisco Offerings

                 Summary

 

Part III         Security

Chapter 7   Network Security Testing

                 Network Security Testing Overview

                 Bootable CD-ROM—Based Tool Kits

                 Network Scanners

                 Nmap Scanner

                 Nessus Scanner

                 Packet Analyzers

                 Preparing the Network

                 Using Packet Analyzers

                 Summary

 

Chapter 8   Router and Switch Security

                 Router and Switch Security Overview

                 Securing Cisco Routers

                 Best Practice Recommendations

                 Summary

 

Chapter 9   Intrusion Detection System (IDS)

                 IDS Overview

                 IDS Classification

                 IDS Placement

                 IDS Tools

                 Snort

                 Rancid

                 IDS Sensors Using Common Cisco Devices

                 Router IDSs

                 PIX IDSs

                 Commercial Cisco Products

                 Summary

 

Chapter 10 Virtual Private Networks (VPN)

                 VPN Overview

                 IPSec Overview

                 Linux-Based VPNs

                 OpenSWAN

                 Interoperating OpenSWAN with Cisco IOS

                 Interoperating OpenSWAN with a Cisco PIX Firewall

                 Interoperating OpenSWAN with a Cisco VPN Concentrator

                 Windows-Based VPNs

                 Windows/Cisco Interoperability

                 Summary

 

Part IV         Network Documentation

Chapter 11 Documentation Tools: Network Diagrams

                 Network Diagram Overview

                 Topology

                 File Formats

                 Features

                 Linux-Based Graphic Design Tools

                 Deploying Dia

                 Creating Diagrams with Dia

                 Viewing Sample Dia Diagrams

                 Windows-Based Graphic Design Tools

                 Deploying Network Notepad

                 Creating Diagrams in Network Notepad

                 Viewing Sample Diagrams Created by Network Notepad

                 What’s Next

                 Summary

 

1587052113TOC91405

商品描述(中文翻譯)

描述:
這本全方位的實用指南旨在支持您的 Cisco 網路。

- 提供使用從互聯網上輕易獲得的免費軟體和開源工具的詳細建議,包括選擇特定工具的原因
- 參考單一來源以解決常見的 Cisco 網路管理問題
- 專門的網路安全部分幫助管理員有效處理安全問題
- 部署功能完整的 RADIUS 和 TACACS+ 伺服器以控制對 Cisco 設備的訪問
- 部署基於 Linux 和 Windows 的 syslog 伺服器以集中收集由 Cisco 設備生成的 syslog 資訊
- 部署基於 Linux 和 Windows 的網路監控系統以監控通過 Cisco 設備(包括路由器、交換機、VPN 集中器和 Cisco PIX® 防火牆)的介面流量
- 使用網路監控系統的趨勢功能進行長期網路分析和容量規劃
- 自動檢測並報告 Cisco IOS® 軟體設備和 Cisco PIX 防火牆的配置變更
- 在混合環境中使用基於 Linux 和 Windows 的 VPN 伺服器部署基於 Cisco 的 VPN

《網路管理員生存指南》通過提供管理員使用免費工具支持 Cisco® 網路的全方位實用指南,解決了許多常見的網路管理問題。這是一本單一的參考來源,解釋特定問題、其對管理員的重要性,以及工具的安裝和配置過程。這些解決方案以 Cisco 為中心,提供了在一般在線資訊中無法獲得的詳細內容。《網路管理員生存指南》強調針對中小型企業和企業的網路經理和管理員的解決方案。

每一章都廣泛基於網路管理功能,從主題概述開始,接著是完成該功能所需的方法論。這包括可用的工具、為什麼它們是正確的選擇,以及它們的安裝、配置和使用方法。對於任何給定的功能,《網路管理員生存指南》根據需要涵蓋 Windows 和 Linux 基礎的工具。大多數基於 Windows 的工具提供了 GUI 的優勢以便於使用,而基於 Linux 的工具則是基於命令行的,可以在自動化腳本中使用。這兩者對於網路管理員都是重要的。

根據作者 Anand Deveriya 的廣泛現場經驗,這本維護 Cisco 網路的實用指南將為您節省大量時間和金錢。任何網路管理員——無論是初學者還是進階者——都會發現這本書非常有用。針對網路管理的實際方面的解決方案使《網路管理員生存指南》成為支持您的 Cisco 網路的必備參考。

目錄:
第一部分 基本網路管理
第 1 章 Cisco 設備安裝
- 介紹
- 連接到 Cisco 設備以進行配置
- 使用控制台介面進行本地連接
- 使用 Telnet 進行遠程連接
- 使用宏自動化任務
- 使用安全外殼 (SSH) 保護對 Cisco 設備的遠程連接
- Cisco 設備的 SSH 配置
- SSH 客戶端安裝
- 使用 GUI 工具配置 Cisco 設備
- 用於 IOS 基礎設備的 HTTP 介面
- PIX 設備管理器
- 安全設備管理器
- 用於配置 Cisco 設備的其他 GUI 工具
- 管理系統文件
- 使用 TFTP 伺服器進行文件管理
- 配置 Cisco 設備以使用 TFTP
- 使用 FTP 伺服器進行文件管理
- 總結

第 2 章 基本網路連接
- 網路監控工具的基本知識:ping 和 traceroute
- 使用 traceroute 驗證網路連接
- 案例研究:使用 ping 和 traceroute 隔離 BGP 崩潰緊急情況
- 觀察
- 結論
- 行動
- 進階網路連接測試工具
- 使用 whois 查詢域名註冊資訊
- 使用 nslookup 查找 DNS 資訊
- 使用 netstat 獲取端口和連接資訊
- 使用基於 MS Windows 的 netstat 命令
- 使用 arp 命令追蹤第二層問題
- 總結

第 3 章 存取控制
- AAA 技術概述
- TACACS+
- RADIUS
- RADIUS 和 TACACS+ 比較
- 使用 TACACS+ 進行 AAA
- 部署基於 Linux 的 TACACS+ 伺服器
- 配置 Cisco 路由器以使用 TACACS+
- 配置 Cisco 交換機以使用 TACACS+

類似商品

最後瀏覽商品 (20)