Basic Network Management - Chapter 15: Firewall Concepts

Chapter 15: Firewall ConceptsObjectiveWhat is firewall?Functions of FirewallWhat is IDS ?Functions of IDSFunction of FirewallProtecting data and network resources is critical to successful e-business.Firewalls are mandatory network security devices.When connecting to the Internet, you need a firewall in every location with Internet access.Firewalls provide: Access Control Authentication VPN Network Segmentation DoS protection and some network layer attack detection Recording SyslogInternetSwitch Syslog Server RouterSwitchRASdmzLocation of FirewallFirewallinsideoutsideCISCO PIX FIREWALL1 – Pix Firewall 5012 – Pix Firewall 506E3 – Pix Firewall 515E4 – Pix Firewall 5255 – Pix Firewall 535Some Firewall TypesINTRUSION DETECTION & PREVENTION SYSTEM OVERVIEW1 – Function 2 – Location of IDP FunctionFunctionsIntrusion Detection & Prevention (IDP) system is designed as dedicated devices for comprehensive intrusion detection, dropping and prevention: Detects and Prevents intrusions Prevents attacks before it is too late Multiple response mechanisms Allow the user to decide how to respond to individual attacksWebServerUserUsersFinanceServersFirewallCodeRedMailServerHR ServersLocation of IDP Protected networkInternetIDP VictimMail ServerAttackerLAN SwitchSPANLANFirewallSummaryFirewallIDS/IDP