Chapter 21. Integrating Security into the Infrastructure

This chapter covers the following topics:

• The definition of the different security zones around the topology of the Data Center

• Security designs pertaining to the Internet Edge, including antispoofing filtering, Unicast Reverse Path Forwarding (uRPF), traffic rate limiting, routing protocol security, stateful firewalling, and intrusion detection

• Core security, including device hardening and routing protocol security

• Aggregation layer security using stateful firewalls, packet filters, and network-based intrusion detection systems (IDSs)

• Server farm security deploying host-based and network-based intrusion detection, private VLANs, port security, VLAN access control lists (ACLs), ...

Get Data Center Fundamentals now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Data Center Fundamentals by Mauricio Arregoces - CCIE No. 3285, Maurizio Portolani

Chapter 21. Integrating Security into the Infrastructure

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly