Page 742

710

packet-filter routers, 560-564
stateful filters, 567-568

IPSec, 571

AH, 572
DES, 576
Diffie-Hellman, 575
digital signatures, 574
encryption keys, 573
ESP, 571
hashing algorithms, 574
IKE, 575-576
PKI (Public Key Infrastructure), 575
public key encryption, 574

OSPF, 225

authentication, 225-226

policy requirements, 557-558
VPNs, 576

L2F, 577
L2TP, 578

vulnerabilities, 558-559

security weaknesses, assessing, 559
segmentation

bridging, 84-85
LAN switching, 90-91

campus networks, 92

routing, 85, 92
switching, 84-85

Layer 3, 92

selecting

cable, 86-88
devices, 56-57

media, 57

load balancing mechanism, 302
network infrastructure, campus networks, 52
remote user access equipment, 408-409

branch office routers, 410-412
BRI routers, 409
central site routers, 413-415
Cisco 3600 series routers, 415
PRI routers, 409
regional office routers, 412-413
telecommuter routers, 409-410

selecting, 58
transport protocol for DLSw+, 489-490
trunks, 627
WAN technologies, ISDN, 298

serial direct, 485

Serial Tunnel.

See

STUN

service characteristics, Frame Relay, 350
service classes, 533-534

IP Precedence bit values, 534-535

service system control points.

See

SSCPs

session establishment, LLC2, 452-455
setting IP Precedence, 533-534

bit values, 534-535, 619

S-frames (SDLC), 459
SHA (Secure Hash Algorithm), 575
shared secret keys, 576
shared-media LANs, segmentation, 91
shielding, 86
show frame-relay pvc command, 356
show process command, 361
show run command, 526
signaling

IISP, 121
SS7, 600
VoATM, 605-606
VoFR, 607
voice over data networks, 598-600
VoIP, 608

silicon switching, 192
single domain model (Windows networking), 274-275
single point of failure, collapsed backbone, 52
single-mode fiber, 88
single-protocol IP backbone, 310
Skeme key exchange, 575
SLAs, CIR

Frame Relay, 352
measurement interval, 355
oversubscription, 355

slaves, 441
SLS (secondary link station), 458
SLUs (secondary logical units), 442
small-scale networks

flat earth model, 18
ring model, 19-20
star model, 18, 20

SNA, 441

APPN, 490

Cisco IOS support, 493-494
composite network nodes, 491
control points, 491
dependent LUs, 493
end nodes, 491

security

87200333IX.fm Page 710 Wednesday, August 22, 2001 2:01 PM