Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Need firewall advice

from [johan] Network Security [Permanent Link]
Subject: Re: Need firewall advice
Date: Wed, 27 Sep 2006 08:18:44 +0000 
Hi there,


It is advised to have at least a firewall between your router and DMZ.
You can filter things with routers, but most only allow very basic filtering.

I don't have any experience with Watchguard or Sonicwall, so I can not give any meaningfull advice avout those.


I would also like to point out it is not a good idea to use a hub for your externally available servers.
In case of a compromise of only 1 system, all networktraffic on could be sniffed and valuable information obtained.
Although not 100% hack proof, a switch is a much better alternative.
A switch with private VLANs would be the next step...


Best regards,

Johan.




Quoting mattknows@gmail.com:

I got attacked this weekend. I run a small business network set up thusly: DSL router (static /24 DSL service) to hub. Real IP address servers for mail, dns, web. All internal servers, workstations, etc. behind Linksys running VPN endpoint to my static DSL at home so I can do remote admin, work, etc. My linux servers on the outside, several were compromised, from what looks like a ssh vulnerability. Rebuilt servers with Trustix, running NO network services but the daemon doing the servers job (DNS, etc.). I feel I need something between the DSL router and hub that feeds the external servers and the linksys. Considering WatchGuard and SonicWall. Need advice on which, and on specific configuration. Thanks!!






[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Need firewall advice, mattknows
Next by Date:  Re: PIX 6.2(2) behaviour for traffic from lower to higher level, Prabhu Gurumurthy
Previous by Thread:  Need firewall advice, mattknows
Next by Thread:  RE: Need firewall advice, Steve Armstrong
Indexes:  [Date] [Thread] [Top] [All Lists]