Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Enterprise Gigabit Firewall

from [the ska] Network Security [Permanent Link]
Subject: Re: Enterprise Gigabit Firewall
Date: Wed, 22 Mar 2006 19:29:09 -0500 
Greetings, interesting interchange of opinions, nevertheless we must
consider: a firewall everything in one has a great disadvantage in
performance, reason why a rasonable solution is a distributed
infrastructure, not forgetting the subject redundancy as much in connections
as of equipment, this increases the costs independently of the
infrastructure by which it is selected.
Of another side, I am a partisan of infrastructures of security based on
FLOOS, not by a subject of costs but by the freedom in the design of the
infrastructure and the integration that we can obtain from it, it is not a
secret which the monitors in diverse points its necesary in a possible
attack and a IDS or IPS send a early alert, of being able to analyze in real
time and to have information and alert, with the FLOOS alternative we can
make any thing and for my that it is the advantage.
is necessary to have the knowledge necessary to integrate the perfect
infrastructure, but this not finish, that is single the principle since
there is to maintain it, to update it and to improve it.
I says that but that to have a scapegoat if something fails but to try to
avoid in max the failure and option to leave this task into the hands of a
company or in our hands, I decide on the second. A clear item it we can find
in the Computer Crime and Security Survey CSI/FBI 2005 (
http://www.gocsi.com/forms/fbi/csi_fbi_survey.jhtml) where we can see that
companies that have great investment in security, do not make use of
outsourcing in security but that they handle they themselves to it, this
have a security equipment that maintains infrastructure. Since to do it with
FLOOS he is interesting, you can use GNU/linux in especificos
Bridge+firewall way as it base and to separate I deal to others hosts, as
one why analyzes mail + antivirus + antiSpam, other that it analyzes I deal
before it arrives at the web server like proxy inverse, proxy that controls
the use of the network resources towards Internet and one that can handle to
connections VPN in routing and processing of the coding, ipsec is the ideal.
There is much to speak on this IMHO FLOOS is a very good option in an
infrastructure of security to the measurement, tensile and reliable :)

ska
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Enterprise Gigabit Firewall, Shaun Bertrand
Next by Date:  SSL VPNs vs. IPSec VPNs, F A I Z A N
Previous by Thread:  Re: Enterprise Gigabit Firewall, Kevin
Next by Thread:  Re: Enterprise Gigabit Firewall, Shakti Prateek Sharma
Indexes:  [Date] [Thread] [Top] [All Lists]