Sources of network security templates or designs

Chris Gravell chris.gravell at
Thu Jun 24 18:49:56 UTC 2010

You start with all of them once you have a good understanding of the underlying protocols.

There is no cheat-sheet.

-----Original Message-----
From: Sean Donelan [mailto:sean at] 
Sent: Thursday, June 24, 2010 2:45 AM
To: nanog at
Subject: Sources of network security templates or designs

While every network designer/architect with an emphasis on security has 
his or her favorite design templates, I'm wondering what public sources 
do people start with?

    Cisco SAFE and other published designs
    IBM Redbooks
    DOD Security Technical Implementation Guides (STIGs)
    NIST Special Publications
    O'Reilly series (specific books?)

Of course, every designer customizes things based on the project and
preferences.  So I'm not asking for what's best, or even what's wrong
with particular sources.  Just where do you start?

More information about the NANOG mailing list