| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
CheckPoint
|
|
IPfilters
|
|
IPtables
|
|
PIX
|
|
Configuring a NetScreen Firewall: Best practice guideline for the basic setup of a NetScreen firewall Firewalls are generally accepted as the best defense for network security. This paper will detail how to setup a NetScreen firewall using the command line configuration options. It will demonstrate how to setup the trusted and untrusted ports, management IP address, SNMP, DNS and some critical security policies. The report will also show how to configure the syslog reporting, administrator email alerts, and the DHCP server.
By Robert Bayley, 04/05/2004
|
|
Using ISA Server Logs to Interpret Network Traffic Firewalls are necessary for a defense-in-depth strategy. Microsoft entered the firewall market with Internet Security and Acceleration Server (ISA Server). ISA Server was a follow-on release of Microsoft Proxy Server and part of the .Net Family. As with most Microsoft products, logging capabilities are included. ISA Server contains detailed security and access logs. You can install ISA Server in three different modes: firewall mode, web caching mode, or integrated mode. In firewall mode, you can secure communication between an internal network and the Internet using rules. You can publish internal servers so that their services are available to Internet users. In web caching mode, you can decrease network bandwidth with ISA Server storing commonly accessed objects locally. You can route web requests from the Internet to an internal Web Server. In integrated mode, all of these features are available.
By Unknown, 04/05/2004
|
|
Case Study: Deploying and Configuring a Netscreen 100 Firewall Appliance to Secure the Network Firewall implementation and deployments are done many times without much consideration or planning. Upper management in many organizations do not know what their firewall policies are, the type of firewall it is, or the configuration of the firewall. Often companies believe that firewalls are the magical silver bullet for their organization. It takes a lot to configure a firewall properly and to maintain it securely.
By James M Murphy, 04/05/2004
|
|
Build your own firewall using SuSE Linux: A mechanics guide. Let's assume for today we need a low cost yet highly functional router and firewall combination for a small office or medium sized business that offers Internet services such as email to its small network of employees and web services such as a web server serving web pages to its customers. The following paper describes the different tools that can be used in setting up an appropriate router and firewall combination using Linux that offers the necessary functionality and security to its users as well as the means to monitor it by an administrator. What follows is not a how-to but an outline to take "reasonable care" following due diligence in providing network security in an environment that requires it.
By Paul O’Neil, 04/05/2004
|
|
Migrating Services Between Firewall Technologies This paper describes the considerations that are essential to address when a corporate firewall infrastructure is replaced with new technology. The focus is on a business environment where services pass through high availability firewalls and any loss of service can immediately result in significant financial loss or worse. This paper has deliberately been written independent of specific firewall products. This is not a step-by-step guide. It is an aid to assist firewall administrators with project management issues and technical issues that could result in unplanned outages.
By Andrew Barratt, 04/05/2004
|
|
Support guides for the Cyberguard Firewall Appliance The reason for this document is that there is very little out there on the internet, on training courses, product cd's, release notes or "readme" help files for Cyberguard firewall administrators to "pick up and use". Additionally, there are many occasions where there is just little information if none at all to assist (excluding paying for support) in tuning, troubleshooting and special unique guidelines. This aims to bridge the gap by providing a comprehensive guide that has been accumulated over the years of administration and to alleviate some of the frustration for Cyberguard firewall administrators. This list of various tips and notes gathered together forms an invaluable guide due to the fact that its based on years of experience; undocumented by official lines, but proven, tried and tested in our lab plus on many Cyberguard pairs under maintenance contracts.
By Chris Bodill, 04/05/2004
|
|
Benefits Of Implementing Secure Computing's Sidewinder Firewall Appliance At A U.S. Army Military Installation The implementation of the Sidewinder firewall solution would transparently support the upgraded network demands and add essential security mechanisms such as Application Layer protection, Stateful Inspection technology, etc. These functionalities increased the site's ability to defend itself against attacks. In addition, real-time event monitoring, as well as uniquely configured Strikeback response alerts, allow IT Security personnel to proactively monitor attempted intrusions and suspicious activity. The added protection mechanisms supplied by the implementation of a Sidewinder firewall appliance, along with strict "least privilege" access control policies would assist the Designated Approval Authority in accepting the new minimized level of risk and, therefore, approve the site's new DITSCAP accreditation.
By Andrew Rafla, 03/28/2004
|
|
Securing the Perimeter: A Case Study My employer is a small consulting firm whose specialty is providing their customers with Microsoft Windows and Citrix networked business solutions. They believed their internal servers were secure due to their diligence in keeping the Operating Systems up to date with the latest service packs, hotfixes and patches. Virus signatures and scanning software was also kept current. I was given the task of evaluating the security of the network perimeter and to make recommendations for securing our Internet connection. Examination of the perimeter infrastructure showed the network to be virtually defenseless. There was no Firewall installed and very little filtering of inbound or outbound Internet traffic on either the router at the corporate office or the router at the branch office. The Linux, Help Desk, Mail server and the two Active Directory servers had direct network links to both the internal network and the Internet making them prime targets for intruders.
By George Kelschenbach, 03/28/2004
|
|
Comprehensive Anomaly Detection (CAD) When researching possible open source solutions, one utility stood out as an example of what we needed to accomplish: portsentry. Portsentry is a port-monitoring tool that is able to take action when a change occurs in the signature of a machine's ports. Put another way, if an intruder accesses a port that is not in the allowed port list, portsentry can automatically add a packet filtering rule (among other responses) to block the intruder from any further connection efforts. Watching how portsentry reacted led to the idea that we could build a set of firewalls that could monitor their own health once they were connected to the Internet. This monitoring went beyond the usual combination of Tripwire and HID/NID systems and included the ability to take automated action in response to detecting a change in the known and expected state of each firewall.
By Niles Mills, 03/28/2004
|
|
Internet Service Providers: The Little Man's Firewall. There has recently been call for Internet Service Providers to begin filtering traffic related to the spread of malicious data traffic such as viruses, worms and open proxy abuse to and from their end-users. This case study outlines the planning, implementation, and results phase of such an endeavour by a medium sized national Australian ISP. It illustrates that a significant improvement in the security of the ISP network, end-user connections and indeed the Internet as a whole may be achieved by filtering access to ten TCP/IP ports extensively targeted by this malicious data traffic. By providing an "opt-out" mechanism for those end-users that do not wish to have such filtering applied, this heightened security is possible without negatively impacting connectivity or functionality. This document is intended to be a high level case study in order to have relevance beyond the scope of the specific organization, but at the same time provide enough detail to serve as a good illustration.
By Luke Dudney, 03/26/2004
|
|
Page: 12 3 45 |
