User`s guide
Chapter 1 Cisco SDM Express
Supplementary Help
1-32
Cisco SDM Express 2.4 User’s Guide
OL-7141-05
Enable Password Encryption Service
Cisco SDM Express enables password encryption whenever possible. Password
encryption directs the Cisco IOS software to encrypt the passwords, Challenge
Handshake Authentication Protocol (CHAP) secrets, and similar data that are
saved in its configuration file. This is useful for preventing casual observers from
reading passwords, for example, when they happen to look over an
administrator’s shoulder.
The configuration that will be delivered to the router to enable password
encryption is as follows:
service password-encryption
You can undo this fix using the Cisco SDM Security Audit feature. To learn how,
see the Security Audit online help in Cisco SDM. For more information, click
Cisco Router and Security Device Manager.
Enable Netflow Switching
Cisco SDM Express enables Netflow switching whenever possible. Netflow
switching is a Cisco IOS feature that enhances routing performance while using
Access Control Lists (ACLs) and other features that create and enhance network
security. Netflow identifies flows of network packets based on the source and
destination IP addresses and TCP port numbers. Netflow then can use just the
initial packet of a flow for comparison to ACLs and for other security checks,
rather than having to use every packet in the network flow. This enhances
performance, allowing you to make use of all of the router security features.
The configuration that will be delivered to the router to enable Netflow is as
follows:
ip route-cache flow
You can undo this fix using the Cisco SDM Security Audit feature. To learn how,
see the Security Audit online help in Cisco SDM. For more information, click
Cisco Router and Security Device Manager.