Security: Components used to create a secure network design - Paiet/Tech-Journal-for-Everything GitHub Wiki

  • DMZ: Demilitarized Zone
    • a small network you allow for public access
    • keeps your LAN from being compromised
  • Subnetting: Logically Segmenting the Network
    • Good part of Network Design involves a good subnetting network design.
    • Takes a single larger network and sub-divides it to smaller networks.
  • VLANs: logically groups devices using a switch.
    • for management
    • for security
  • NAT: Network Address Translation
    • Most Networks it is essential because private IP addresses
    • Translates Private IPs to Public IPs
      • Static One to One
      • Dynamic Many to Many
      • Overload (PAT): One to Many
  • Remote Access:
    • provides for offsite access to the LAN
    • using VPNs
  • Telephony:
    • VoIP
    • PBX
    • CTI (converged data)
  • Securing Telephony
    • https://itprotv-notes-bucket.s3.amazonaws.com/Security%20Guidance%20for%20Deploying%20IP%20Telephony%20Systems%20-%20PDF.pdf
  • NAC: Network Access Control
    • Authentication
    • Vulnerability Assessment
    • Security Enforcement Policies
  • Virtualization:
    • multiple operating systems simultaneously
  • Cloud Computing:
    • PaaS
    • SaaS
    • IaaS
    • Private (not on the internet)
    • Public (on the internet)
    • Hybrid (both)
    • Community (shared ownership)
  • 10 Immutable Laws of Security http://technet.microsoft.com/library/cc722487.aspx