Firewalls Presentation
Firewalls Presentation
Firewalls Presentation
Firewalls
Protection Methods
Packet Filtering
Proxy Services
Encrypted Authentication
Virus Scanning
McAfee / Norton
Content Filtering
Packet Filters
Limitations of Packet
Filters
Network Address
Translation
Proxies
Proxies
Content filtering
Since the proxy server is a natural bottle neck for observing all
of the external requests being made from the internal network
it is the natural place to check content
This is usually done by subscription to a vendor that specializes
in categorizing websites into content types based on
observation
Usually an agent is installed into the proxy server that
compares URL requests to a database of URLs to reject
All access are then logged and reported, most companies then
review the reported access violations and usually a committee
reviews and decides whether or not any personnel action
should be taken (letter of reprimand, dismissal, ect)
Sites that are usually filtered are those containing information
about or pertaining to:
Gambling
Pornography
VPNs (more)
Encrypted Authentication
Good VPN clients disable connections to the internet while the VPN is
running
Problems include:
A port must be exposed for the authentication
Possible connection redirection
Stolen laptops
Work-at-home risks
Effective Border
Security
For an absolute minimum level of Internet security
Packet filtering
Network Address translation
High-level application proxying
Just because a machine has a lot of capacity dont just pile things
on it.
Isolate applications, a side benefit of this is if a server goes
down you dont lose everything
Hide the product name and version details, esp, from the
Internet
Modems
Issues:
Benefits:
Customer
Web
Server
Server
Client
Firewall
Router
Mail
Server
External Private Network
Hacker
Hacker
DMZ
Server
Customer
Web
Server
Server
Client
Router
Firewall
FTP
Hacker
Hacker
Server
Internal Private Network
DMZ
Bastion Host
no unnecessary services
no unnecessary applications
no unnecessary devices
Fedora, RedHat
Provide
configurable packet filtering
NAT/DHCP
Enterprise Firewalls