Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Cisco 836 Firewall

from [Phil Waller] Network Security [Permanent Link]
Subject: RE: Cisco 836 Firewall
Date: Thu, 26 Aug 2004 11:21:36 +0100 
Just follow the norm
 
Up to date AV
Up to date Patches
Personal Firewalls
Good policies [even small compaines need policies]
Good Logging and auditing
SIV on the servers [system integrity verifiers] GFI LANSIM [MD5 hashes -
MD5sum]
Good egress and ingress filters 
 
and vigilance
 
\Vig"i*lance\, n. [L. vigilantia: cf. F. vigilance.] 1. The quality or state
of being vigilant; forbearance of sleep; wakefulness.

2. Watchfulness in respect of danger; care; caution; circumspection.
--Cowper
 
All the best

 -----Original Message-----
From: Daniel Benden [mailto:DanielBenden@dbedvtkserver.de]
Sent: 26 August 2004 11:07
To: Phil Waller; firewalls@securityfocus.com
Subject: AW: Cisco 836 Firewall



Hello,
 
yes this is what I thought, thank you! So how to protect against this
backdoors and so on?
 
Daniel

  _____  

Von: Phil Waller
Gesendet: Do 26.08.2004 11:20
An: 'Daniel Benden'; firewalls@securityfocus.com
Betreff: RE: Cisco 836 Firewall


What about malware coming in from email / HTTP / - Backdoors or blended
threats that arrive via the affore mentioned means, they then open up
Reverse conenctions out through your unprotected network [If a Firewall was
in evidence then you would state which rules and which sockets were allowed
out] You would also implement Personal Firewalls as well on each client
 
Surley a Firewall is more than just protecting connections into your LAN?
 
Just my opionion anyway
 
 

-----Original Message-----
From: Daniel Benden [mailto:DanielBenden@dbedvtkserver.de]
Sent: 24 August 2004 21:03
To: firewalls@securityfocus.com
Subject: Cisco 836 Firewall


Hello,
 
does anybody know a good and secure Setup for a CISCO 836 integrated
firewall? As of my knowledge, I dont need a firewall, when using dynamic
nat. All PCs use one ip to the internet, and no global to local IP mappings
were added, so the network should not be attackable from the outside. AM I
right with this?
 
Thans in Advance
 
Mit freundlichen Grüßen
Daniel Benden
 
-- 
Daniel Benden EDV- und TK-Consulting
Hahnenkamp 6
52445 Titz
Deutschland
Tel: +49 (0) 2164 7027-0
Fax: +49 (0) 2164 7027-10
24h Service: +49 (0) 2164 7027-19
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  AW: Cisco 836 Firewall, Daniel Benden
Next by Date:  RE: Cisco 836 Firewall, Phil Waller
Previous by Thread:  AW: Cisco 836 Firewall, Daniel Benden
Next by Thread:  RE: Cisco 836 Firewall, Phil Waller
Indexes:  [Date] [Thread] [Top] [All Lists]