[j-nsp] Secure Junos template
Jonas Frey
jf at probe-networks.de
Wed Apr 26 04:22:25 EDT 2006
Hi,
it does protect the whole router as interface IPs still go to the RE (in
terms of SSH etc).
Regards,
Jonas
On Wed, 2006-04-26 at 09:29, Ian MacKinnon wrote:
> Hi All,
>
> I am looking at the secure Junos template from
> http://www.cymru.com/gillsr/documents/junos-template.pdf
>
> In particular the router-protect term, it is allowing ssh from some
> secure networks and denying it from all others. That I understand.
> However it is only applied to the loopback interface, does this protect
> the whole router? Can you still ssh to interface ip addresses directly?
>
>
> --
> Ian MacKinnon
> --
>
> This email and any files transmitted with it are confidential and intended
> solely for the use of the individual or entity to whom they are addressed.
> If you have received this email in error please notify the sender. Any
> offers or quotation of service are subject to formal specification.
> Errors and omissions excepted. Please note that any views or opinions
> presented in this email are solely those of the author and do not
> necessarily represent those of Lumison, nplusone or lightershade ltd.
> Finally, the recipient should check this email and any attachments for the
> presence of viruses. Lumison, nplusone and lightershade ltd accepts no
> liability for any damage caused by any virus transmitted by this email.
>
> --
More information about the juniper-nsp
mailing list