[nsp] Protecting border routers

Matthew Crocker matthew at crocker.com
Fri Nov 28 10:34:32 EST 2003

What is the current best practice for protecting border routers.   We 
have a couple routers that are in front of our firewall.  I would like 
to put them behind the firewall from a management, SNMP, logging point 
of view.  There is not reason for the Internet to talk with my router.  
My upstreams need to talk for BGP sessions.  Is it just done with ACLs 
or is there a way with MPLS to set the local management stuff on the 
router into a VPN?


Matthew S. Crocker
Crocker Communications, Inc.
Vice President
PO BOX 710
Greenfield, MA 01302

P: 413-746-2760
F: 413-746-3704
W: http://www.crocker.com
E: matthew at crocker.com

More information about the cisco-nsp mailing list