| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
CheckPoint
|
|
IPfilters
|
|
IPtables
|
|
PIX
|
|
High Availability Firewall - WatchGuard Firebox Vclass V60 Availability is but one of the three cornerstones in information security: Confidentiality, Integrity, and Availability. Nevertheless, its importance cannot be undermined. With the advent of simplified computing technologies, it is not impossible to achieve a high availability firewall setup within a reasonably short span of time. The focus of this paper is on the subject of high availability (HA). It kicks off by acquainting oneself with the term HA, analyzing the need for HA, categorizing the modes of HA, understanding the technicalities of HA, and finally setting up an HA model based on the WatchGuard Firebox Vclass V60, including troubleshooting procedures. It wraps up by emphasizing the fact that high availability is not the sole factor for total system reliability. Interdependency between other factors plays a key role in ensuring the availability aspect of information security.
By Wee Leng, 03/24/2004
|
|
Linux Firewall - the Traffic Shaper This article will look at ways for users to get more out of that faithful but somewhat dull firewall. In particular, we will look at traffic shaping, a technique that prevents high-bandwidth traffic like Napster from making other Internet applications, such as Web browsing and gaming, unusable. By making some simple adjustments to the Linux kernel, users can implement an effective traffic shaping setup that ensures that the Web traffic can flow smoothly, even when a lot of outsiders are busy working with your Napster store. By restricting certain types of traffic which may otherwise dominate the Internet link, firewalls can not only optimize bandwidth but can also serve as an effective tool against certain types of 'Denial of Access' attacks.
By Jeroen Wortelboer and Jan Van Oorschot, 03/23/2004
|
|
Transparent, Bridging and In-line Firewall Devices There are many tools we use as network and security professionals to build a secure network. Routers, virtual private networks, intrusion detection systems and vulnerability scanners are regularly employed to tackle this challenging task. Many would agree that the foundation of such a defense is the firewall. While the traditional implementation of a firewall as a router works well in most situations, another version can strengthen existing configurations or succeed where its brethren fail. In this article we will examine the concept of a bridging or transparent firewall which sits in-line with the network it protects.
By Matthew Tanase , 03/22/2004
|
|
The Enemy Within: Firewalls and Backdoors As a modern IT professional you've done all the right things to keep the "bad guys" out: you protected your network with firewalls and/or proxies, deployed anti-virus software across all platforms, and secured your mobile workstations with personal firewalls. You may even be in the process of designing and deploying an enterprise-wide network and host intrusion detection framework to help keep an even closer eye on what's going on. Even with all this, are you really safe? Can your multiple-lines of defense truly protect your network from modern methods of intrusion? This article presents an overview of modern backdoor techniques, discusses how they can be used to bypass the security infrastructure that exists in most network deployments and issues a wake-up call for those relying on current technologies to safeguard their systems/networks.
By Bob Rudis and Phil Kostenbader, 03/22/2004
|
|
Linux Firewall-related /proc Entries Most people, when creating a Linux firewall, concentrate soley on manipulating kernel network filters: the rulesets you create using userspace tools such as iptables (2.4 kernels,) ipchains (2.2 kernels,) or even ipfwadm (2.0 kernels). However there are kernel variables -- independent of any kernel filtering rules -- that affect how the kernel handles network packets. This article will discuss these variables and the effect they have on the network security of your Linux host or firewall.
By Brian Hatch, 03/22/2004
|
|
Firewall Evolution - Deep Packet Inspection Firewalls provide a variety of services to networks in terms of security. They provide for network address translation (NAT), virtual private networks (VPN), and filtering of traffic that does not conform to the network's stated security policy. There are many forms of firewalls from simple packet filters to circuit-level gateways to proxy firewalls. Firewalls are being asked to fill a larger and more varied role in network security these days than several years ago. One of the more recent innovations in firewall technology is the application of deep packet inspection or DPI. Deep Packet Inspection can be seen as the integration of Intrusion Detection (IDS) and Intrusion Prevention (IPS) capabilities with traditional stateful firewall technology. Traditional networks have a defined boundary demarcated by a firewall with an IDS sensor sitting behind it.
By Ido Dubrawsky, 03/22/2004
|
|
Linux Kernel 2.4 Firewalling Matures: netfilter In yet another set of advancements to the kernel IP packet filtering code, netfilter allows users to set up, maintain, and inspect the packet filtering rules in the new 2.4 kernel. This document explains those changes and tips on how to get started.
By Dave Wreski, 03/08/2004
|
|
Firewall Designs A chapter from "Building Firewalls with OpenBSD and PF, second edition". Discusses possible firewall configurations that pf can be used in. Also covers basic hardward and software firewalls, firewall policy, etc...
By Jacek Artymiak, 03/08/2004
|
|
Firewall Comparison: Checkpoint Firewall-1 and Cisco PIX Checkpoint FW-1 has been the firewall market leader since shortly after its introduction in 1994/95. Its well designed GUI interface was, and still is, the best visual interface to any firewall product. This intuitive interface makes FW-1 easy to work with even for those new to firewalls. Why other firewall vendors have been so slow to copy the FW-1 interface is a question worth asking. The drawback to this GUI is that you have to use it; there is no ASCII menu or command line access.
By Roble Systems Consulting, 03/03/2004
|
|
Basic Intrusion Prevention using Content-based Filtering This article will discuss a very useful but seemingly overlooked functionality of Netfilter, a firewall code widely used in Linux, that provides content matching and filtering capabilities.
By Nawapong Nakjang, 02/27/2004
|
|
Page: 123 4 5 |
