! Management Interface
R1#configure terminal
R1(config)#control-plane host
R1(config-cp-host)#management-interface gig 1/0 allow ssh https snmp
R1(config-cp-host)#exit
R1#show control-plane host features
! Timeouts on TVY sessions
R1(config)#line vty 0 15
R1(config-line)#exec-timeout 10 (Min)
R1(config-line)#exit
! Disable AUX port
R1(config)#line aux 0
R1(config-line)#no exec
R1(config-line)#no transport in
R1(config-line)#no transport out
R1(config-line)#exit
! Note : CoPP/CPPr for NTP, ICMP, SHH, etc
Link: Link
! Teardown inactive TCP to or from Router
R1(config)#service tcp-keepalives-in
R1(config)#service tcp-keepalives-out
! Include timestamps in log and debug
R1(config)#service timestamps log datetime
R1(config)#service timestamps debug datetime
! The Auto Secure Script
R1#auto secure
