Security: Securing Network Devices - Paiet/Tech-Journal-for-Everything GitHub Wiki

• Firewalls (Diagrams):
  • Host Based
    • Windows Firewall (Windows 8.1 series)
    • iptables (CompTIA Linux+ series)
  • Network Based
    • Juniper ScreenOS
    • Cisco ASA (Cisco PIX)
    • pfSense
  • Web Application Firewall (WAF)
    • Ironbee
    • ServerDefender VP
    • ModSecurity
    • Barracuda Web Application Firewall
• Routers (Diagrams):
  • Cisco
  • Juniper
  • HP
• Switches (Diagrams):
  • Cisco
  • HP
  • Juniper
• Load Balancer (Diagram):
  • f5 Big-IP LTM (Load Traffic Manager)
  • Barracuda ADC
  • Kemp Technologies
  • Citrix NetScaler
• Proxies (Diagram):
  • makes requests for us
• Web Security Gateways:
  • Open access points to control access
  • Protects from infections and enforces security policy
  • Filters malware
  • URL filtering
  • application controls for IM and Skype
  • Websense
  • Trustwave Secure Web Gateway
• VPN Concentrators:
  • high performance hardware based VPN connections designed for large numbers of connections and no performance bottleneck.
  • IPsec VPN
  • SSL VPN
• Protocol Analyzers (demo)
  • Wireshark
  • Microsoft Network Monitor 3.4
• Spam Filter:
  • Sophos Security
  • Barracuda Spam Filter
• UTM: Unified Threat Management (demo)
  • URL filtering
  • Content Inspection
  • Malware Inspection
  • Sophos UTM
  • Dell SonicWALL
• Web Application Firewall vs. Network Firewall

|Web App Firewall|Network Firewall|Comparison | |----------------|----------------|-----------| |Layer 7|Layer3 & Layer4| OSI |inspects Data stream|src & dst, inspects packet | function |definitions,logging, reporting |ACLs | How they do |DoS, Backdoors, etc|IP Spoofing,Overuns,tunnelling| Weaknesses |Looks at Everything|Performance| Benefit

• Application aware devices
  • Firewalls
  • IPS Cisco IPS 4200 Series
  • IDS
  • Proxies