IT Security - Prevent Cisco Router Leakage

One of the issues we encounter with Cisco routers are this "leakage" that attackers used to compromise the router. To avoid it, we suggest you to do the following:

1. Block TCP/UDP ports 69, 79, 161, 256, 257, 258, 520, 1080, 1745, 1999, 9001

2. Use static routing "only"

3. Avoid using RIP instead use OSPF

4. Always use "service password-encryption"

5. Block responding to IP unreachable messages