PublishedCisco Press, June 2005 |
ISBN9781587051838 |
FormatSoftcover, 312 pages |
Dimensions23cm × 19cm × 1.5cm |
The definitive guide to understanding MPLS security and implementing and operating secure MPLS networks - Offers theoretical background and practical advice on how to secure MPLS VPN networks - Addresses MPLS VPN security threats and threat models - Discusses common security scenarios and provides recommendations for dealing with them - Includes case studies detailing real-world security issues Service providers and enterprise customers, who together comprise a market worth more than USD1 billion, have adopted MPLS at a rapid pace and are demanding specific guidelines for securing MPLS VPN networks.
This book tackles the subject of MPLS VPN security for network managers, CTOs, enterprise IT managers, and network service architects. The book provides a thorough overview of MPLS security, with practical recommendations on how to securely implement and operate MPLS networks. It begins with background on security and VPN technologies and discussion of the threats and attack points of which MPLS users and providers must be aware.
Definitions and analysis of VPN service user requirements and how MPLS meets them are addressed, followed by a discussion of the methods used to secure Internet access and extranet services. Practical recommendations for securing MPLS networks, which build on earlier discussions, provide a hands-on guideline on how to harden an MPLS network. Next, various practical methods for deploying IPSec with MPLS are recommended followed by an exploration of the implications of connecting Layer 2 networks to an MPLS core. A discussion of potential security flaws focuses on operational issues and their security implications and recommends guidelines on how to securely operate an MPLS network. The book concludes with a series of case studies that synthesize all the key security topics of the book in applicable, practical design discussions. Michael Behringer is a senior consulting engineer at Cisco, focusing on service provider security, and an expert in MPLS VPN security. He has been involved with MPLS VPN security since the inception of MPLS VPN networks, consulting with service providers on building secure networks and with enterprises on how they can rely on MPLS services.
Monique Morrow is a CTO consulting engineer at Cisco with more than 20 years experience in IP internetworking. She led the Engineering Project team for one of the first European MPLS-VPN deployments in 1999 for a European service provide. She is an experienced author and technical reviewer.
