Firewalls And Infrastructure Security

1188 Words3 Pages

Firewalls and Infrastructure Security

A firewall is a network device, hardware, software, or a combination of the two, whose purpose is to enforce a security policy across its connections. It is comparable to a wall that has a window where the wall serves to keep things out, except those permitted through the window. A security policy acts like the glass in the window; it permits some things to pass, light, while blocking others, air. The heart of a firewall is the security policy that it enforces.

Security policies are a series of rules that define what traffic is permissible and what traffic is to be blocked or denied. These are not universal rules, and there are many different sets of rules for a single company with multiple connections. A web server connected to the Internet may be configured only to allow traffic on port 80 for HTTP, and have all other ports blocked. An e-mail server may have only necessary ports for e-mail open, with others blocked. A key to security policies for firewalls is the same as has been seen for other security policies, the principle of least access. Only allow the necessary access for a function, block or deny all unneeded functionality. How an organization deploys its firewalls determines what is needed for security policies for each firewall.

The security topology will determine what network devices are employed at what points in a network. At a minimum, the corporate connection to the Internet should pass through a firewall. This firewall should block all network traffic except that specifically authorized by the security policy. Blocking communications on a port is simple; just tell the firewall to close the port. The issue comes in deciding what services are needed and by whom, and thu...

... middle of paper ...

...vantage of the overall network design and implement usable subnets with virtual local area networks. Use encryption and encapsulation to secure communications of public segments to enable extranets and cross-Internet company traffic. Use items such as intrusion detection systems and firewalls to keep unauthorized users out and monitor activity. Taken together, these pieces can make a secure network that is efficient, manageable, and effective.

Sources:

http://en.wikipedia.org/wiki/Firewall_(networking)

http://en.wikipedia.org/wiki/Access_control_list

http://en.wikipedia.org/wiki/Computer_security

http://en.wikipedia.org/wiki/Network_Address_Translation

http://www.firewallguide.com/

http://www.vicomsoft.com/knowledge/reference/firewalls1.html

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html

http://web.mit.edu/Kerberos/firewalls.html

Show More
Related

  • The Pros And Cons Of Virtualization

    897 Words  | 2 Pages

    Firewall features are provided at the base of network virtualization platforms to bring about segmentation. It allows automated provisioning and context sharing across virtual platforms which lead to increased visibility and security across applications on virtual or physical workloads. This would have been impossible in the past as it would compromise either security or performance. Improved security through virtualization helps you gain mileage over challenges that would otherwise ruin your reputation among clients (Kotsovinos,

    Read More

  • Unit 3 Assignment 1 Network Security Assessment

    1028 Words  | 3 Pages

    Security of the companies data is one of the most important components which allows the business to perform its day to day operation using various networking devices, services that absolutely needs to be protected from intruders. Some of these devices include online transactions, the exchange of data between users and clients both internal and external and external web data needs to be secured. There are several polices that would need to be configured such as a web sever and firewall configurations. However, with these configurations the first and most important task is to identify any vulnerabilities or loopholes in security within the company. The company has both LAN (Local Area Network) and WAN (Wireless Local Area Network) and a web sever. These resources need to be secured at all times from hackers or anyone else by implementing the appropriate security measures.

    Read More

  • Overview of Network Security

    868 Words  | 2 Pages

    ...work Security Article). With this given information in the essay, is a great start to learn how to keep your network secure. This is only a small part of the prevention of infiltration of your network and computer. If one desires to learn more, go above and beyond and continue to learn on how to keep your network secure.

    Read More

  • Critical Infrastructure Protection

    1122 Words  | 3 Pages

    When it comes to protecting an infrastructure, careful planning and coordination needs to take place. Protecting an infrastructure takes an important security initiative called Critical Infrastructure Protection (CIP). The United States critical infrastructure is protected by the Department of Homeland Security.

    Read More

  • Network Security Case Study

    1091 Words  | 3 Pages

    Backing up data, avoiding a single point of failure, and making sure data is only put where it needs to be are a few extra precautions to keeping your network secure [8].

    Read More

  • Network Security

    1526 Words  | 4 Pages

    ABSTRACT : This paper describes the basic threats to the network security and the basic issues of interest in designing a secure network. it describes the important aspects of network security. A secure network is one which is free of unauthorized entries and hackers. INTRODUCTION

    Read More

  • Sharpe Style Executive Summary

    1359 Words  | 3 Pages

    The https:// protocol should be used for transactions to indicate the server is encrypted and secure (Wallace, 2014). Additional important security measures include using antivirus software, installing a firewall, ensuring that information is encrypted while in transit (Vargis, 2010), limiting access to consumer data by business need to know, track and monitor consumer data, testing security frequently, staying up to date on hacker tactics, and monitoring third-party providers (Conroy, Milano, Narula & Singhal, 2014). In addition, user requirements should include a strong authentication to ensure authorized access, as well as issue and enforce updates of OS patches and virus definition files, manage and maintain configuration settings, and review firewall logs for intrusions (Vargis, 2010). Furthermore, employees should be monitored closely with software that checks email and internet traffic for certain keywords or file types, and block use of certain websites and applications completely. Business policy should require immediately cancelling network access and passwords when employees leave the company, and avoid passwords to remotely access the network in future (Whittle,

    Read More

  • Proposal for Networks in a Small Office

    552 Words  | 2 Pages

    The packet-filtering firewall will keep out unauthorized data from entering the network and reduce the number of ports that are accessible by the users and outside threats.

    Read More

  • firewalls

    736 Words  | 2 Pages

    A firewall is a hardware or software device, or sometimes a combination of the two, that monitor, record, and filter all data that is coming into or out of the network they are connected on based on a set of rules implemented on the device or software program.

    Read More

  • Network Security Monitoring Tools

    877 Words  | 2 Pages

    It has been demonstrated that a number of interoperable systems must be implemented to fully protect a network; a strategy known as Defense in Depth. Due to the multitude of security devices and device categories available, it can be very difficult to identify the correct tools for meeting security goals. Using the Defense in Depth strategy will require an understanding of the interactions between devices occuring within the network.

    Read More

  • RBS Computer Failure Caused By Inexperienced Operative in India

    2157 Words  | 5 Pages

    ...ons for each set of data should be preferred to prevent loss. Using a firewall, antivirus, Malware block, phishing filter, anti spam filter etc is the best practice. Using the data encryption is networks is the best practice every company should apply to be safe against hackers. External commands can also shut down the systems and this is called as cyber attack which needs to be prevented using strong security systems. Using safe and controlled access to the system is just in case of bigger companies which grants access to authorized persons only.

    Read More

  • Network Policy Server and Remote Access

    1136 Words  | 3 Pages

    For the most part we have addresses the needs of our sales force on a case by case basis but going forward we really need to ensure we have a defined policy to streamline remote access. To accomplish this there are a few benchmarks we need to achieve. First of all the network has to be reliable or in more technical terms it needs to have high availability. Most importantly we need to make sure that the network is secure as much as it is possible with all the different types of users asking for access. Lastly, we need to address how we handle employees using personal or non-company issued computers and how we ensure that those machines meet of other remote access policies.

    Read More

  • The Firewall

    5205 Words  | 11 Pages

    A firewall is a system or group of systems that enforces an access control policy between two or more networks. The means by which this control is accomplished varies widely, but in principle, the firewall is a pair of mechanisms, one that blocks traffic and one that permits traffic. Some firewalls emphasize blocking traffic, while others emphasize permitting traffic. The most important thing to recognize about a firewall is that it implements an access control policy. If you don't know what kind of access you want to permit or deny, or you let someone else or some product configure a firewall based on judgment other than yours, that entity is making policy for your whole organization.

    Read More

  • Computer Security in an Information Age

    2236 Words  | 5 Pages

    Computer security is the process of preventing and detecting unauthorized use of your computer. Prevention measures help to stop unauthorized users or intruders from accessing any part of a computer system. Detection helps one to determine whether or not someone attempted to break into a computer system, if they were successful, and what they may have done.

    Read More

  • Network Management Plan And Security Plan

    841 Words  | 2 Pages

    Network management planning and security planning involves identifying the best and most appropriate systems and hardware that the firm can use to better manage network and plan security systems. Therefore, the management required me to examine the best software and hardware systems in the market place that the company can adopt to enable it to manage the network and security. The management required me to advice on the implementation procedure of various plans that are going to be adopted. My responsibility also involved finding out or predicting the impact of the plan on the future operations. They required me to evaluate the challenges the company might face while adopting the changes in the network management plan and security plans.

    Read More

More about Firewalls And Infrastructure Security

Open Document