Академический Документы
Профессиональный Документы
Культура Документы
Lowder
CISSP / MCSE / CCNA
Sean.Lowder@bcbsla.com
Bio
What is a firewall?
Firewall Types
First Generation
Second Generation
Third Generation
Forth Generation
Kernel Proxy technology
Deep packet inspection
IDS / IPS capabilities
Documentation
Approval Procedures and
Process
Firewall Rule Base
VPN
Layer Seven Switching
Internal Testing
External Testing
Sean K. Lowder CISSP 2007
Phases
I.
II.
III.
IV.
V.
Gather Documentation
The Firewall
The Rule Base
Testing and Scanning
Maintenance and
Monitoring
Sean K. Lowder CISSP 2007
Phase I - Gather
Documentation
Security Policy
Change Control Procedures
Administrative Controls
Network Diagrams
IP Address Scheme
Firewall Locations
IPS Capable?
Phase I - Gather
Documentation
Firewall Vendor
Software Version and Patch Level
Hardware Platform
Operating System Version and
Patch Level
Administrator training and
knowledge
Three As
Authentication
Local
/ Remote
Access
Logical
Auditing (logs)
Local
/ Physical
/ Remote
OS Hardening
Sean K. Lowder CISSP 2007
Business reason
Owner
Host devices
Service Ports
10
Logging
11
Nmap
Firewalk
12
Firewall Logs
Reviews
Storage and archival
Sean K. Lowder CISSP 2007
13
Demo
14
Questions???
15
Lance Spitzner
www.spitzner.net
White Paper - Auditing your Firewall Setup
White Paper - Building your Firewall Rule base
VicomSoft
www.firewall-software.com
White Paper Firewall
Sean K. Lowder CISSP 2007
16