Library items tagged: advisory

An introduction to cryptographic techniques

Anonymous
Friday, February 3, 2012 - 13:35
advisory
multi-site connectivity
VPN
security
Cryptography is one of the essential technologies used in building a secure VPN. Different applications of the same basic algorithms can provide both encryption that keeps data secret and authentication that ensures the two security peers in a VPN are who they claim to be. This chapter introduces some basic concepts in cryptography and demonstrates how they can be used in practice to provide data confidentiality. The next chapter continues this theme with a discussion of mutual authentication using cryptographic algorithms.
Read more

An overview of VPN technology

Anonymous
Friday, February 3, 2012 - 13:07
advisory
multi-site connectivity
security
VPN
A number of diverse computing topics contribute to the subject of VPNs and this can make the subject appear daunting to a newcomer. This section seeks to provide a roadmap for readers interested in implementing a straightforward IPSec or SLL VPN with minimal background reading. A discussion of the practicalities of implementing an IPSec VPN using Windows® and Cisco® routers is provided in Section 7 along with some examples. SSL VPNs are covered in more detail in Section 8 followed by a configuration guide in Section 9.
Read more

Technical consideration

Anonymous
Friday, February 3, 2012 - 11:46
advisory
multi-site connectivity
firewalls
security
Testing Before any system is introduced into the production environment, it must undergo a period of testing and evaluation. This is usually done in a test environment away from the production infrastructure.
Read more

Firewall implementation

Anonymous
Friday, February 3, 2012 - 11:40
advisory
multi-site connectivity
firewalls
security
implementation
There are a number of issues that need to be considered before a new firewall is deployed or an existing one replaced on an organisation’s network. Requirements Analysis Defining a requirements specification will allow a successful evaluation of the various solutions available. There are many different elements involved in a firewall solution and the balance which needs to be achieved between these will differ significantly between organisations.
Read more

Cisco security appliances

Anonymous
Friday, February 3, 2012 - 11:35
advisory
multi-site connectivity
firewalls
security
cisco
technical guide
Overview Cisco offers the PIX firewall solution, acquired from Network Translation in 1995, along with the original Centri firewall which ran on the Windows NT® operating system. The Cisco PIX, however, runs its own proprietary system called PIX OS, currently at version 7. The PIX is a packet filtering firewall with stateful inspection, and there are several DPI features in the newer versions which enhance the rules that can be created.
Read more

Open source projects

Anonymous
Friday, February 3, 2012 - 11:30
advisory
multi-site connectivity
firewalls
security
open source
technical guide
SmoothWall and IPCop For some time, projects have been running to establish dedicated appliances based upon Linux, such as firewalls and web caches. These projects provide a pre-configured tool specific to one task which is easy to implement and configure.
Read more

UNIX/Linux-based firewalls

Anonymous
Friday, February 3, 2012 - 11:27
advisory
multi-site connectivity
firewalls
security
UNIX
Linux
Why use UNIX/Linux? Firstly, unless a network administrator is familiar with the UNIX/Linux platform, then it is not recommended that a UNIX/Linux firewall is implemented. It will be easier to maintain a secure system if the administrator has skills in maintaining the underlying operating system. UNIX/Linux systems typically rely on a CLI more than a GUI, making navigating the system more difficult for the first time user.
Read more

Firewall rules and logging

Anonymous
Friday, February 3, 2012 - 11:20
advisory
multi-site connectivity
firewalls
logging
security
Good Practice All firewalls work on the premise of rules configured to implement the site security policy. Rules are so critical to the operation of the firewall that it is vital they are fully understood before a firewall implementation is deployed.
Read more

Firewall location and configuration

Anonymous
Friday, February 3, 2012 - 11:12
advisory
multi-site connectivity
security
firewalls
Design The perimeter of an organisation’s LAN is the obvious place to locate its security protection. However, the perimeter has moved: no longer is there just one ingress to a LAN, but many points of access. Wireless networks, modems, secondary Internet connections and the migration of laptops between networks mean the boundary is constantly moving.
Read more

Modes of firewall operation

Anonymous
Friday, February 3, 2012 - 11:03
advisory
multi-site connectivity
firewalls
security
Different Types of Firewall Firewalls operate in different ways, depending on the layer on which they are implemented. Circuit level firewall: data link layer Various names are used for this type of firewall. It is the type provided whenever NAT and PAT technology are used (see 3.7).
Read more