Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing your Colleague Network Environment

Published byDorothea Meinhardt Modified over 6 years ago

Similar presentations

Presentation on theme: "Securing your Colleague Network Environment"— Presentation transcript:

1 Securing your Colleague Network Environment

2 Session Scope: The goal of this session is to assist the IIPS Security Committee in developing a high-level network configuration for administrative systems support, which can be applied as a system-wide baseline in the IIPS Security Manual Agree on nomenclature We tend to use the terms “inside” or “outside” the firewall. Better terminology would be “In the …” “DMZ”, “Secure (server) Zone”, or “User Zone” Provide a high-level overview of why Colleague and associated services should be secured and discuss some of the system-wide implications of failing to do so Look at examples of specific colleges securing their systems Have open discussion, feedback, and concerns on this topic

3 No control of the who or where (source IP addresses)
System Office Internet Firewall DM Zone Secure Zone User Zone(s) All servers requiring access from non-specified sources on the Internet No control of the who or where (source IP addresses) Control what (ports) All servers with PII data All servers accessed from specific authenticated trusted sources Control of who and where (Source IP addresses) Control what (ports) End-User internal access Limit access to servers in the Secure Zone

4 Self Service Front-end Server E-Commerce Payment Gateway
Firewall DM Zone Core Switch DM VLAN Public Web Servers Web Advisor Web Server Self Service Front-end Server E-Commerce Payment Gateway Portal Front-end Server External DNS Server E-Procurement Mobile

5 Administrative Systems VLAN Colleague Server UI Server
Firewall Secure Zone Core Switch Administrative Systems VLAN Colleague Server UI Server Self Service DB Server Portal DB Server WebAPI for E-Transcript CFNC Crossroute Accuplacer WebAPI Authentication VLAN Active Directory Student Systems VLAN

6 Admin User External IP Address Student User External IP Address
System Office Daily Cash Reporting Data Warehouse Admin User External IP Address Student User External IP Address Firewall User Zone Core Switch User Zone Wired VLAN for Students Wired VLAN for Staff/Faculty Wireless VLAN for Staff/Faculty Wireless VLAN for Students

7 Discussion and Questions

Download ppt "Securing your Colleague Network Environment"

Similar presentations

The Enterprise Guide to Video Conferencing Created using iThoughts [...] [...]

The Enterprise Guide to Video Conferencing Created using iThoughts [...] [...]
CCNA3: Switching Basics and Intermediate Routing v3.0 CISCO NETWORKING ACADEMY PROGRAM Chapter 6 – Switch Configuration Switch Configuration Starting the.

CCNA3: Switching Basics and Intermediate Routing v3.0 CISCO NETWORKING ACADEMY PROGRAM Chapter 6 – Switch Configuration Switch Configuration Starting the.
Application Guide For Mesh AP – MAP-3120

Application Guide For Mesh AP – MAP-3120
WHG Product Training Oct 2011 For authorized partners only

WHG Product Training Oct 2011 For authorized partners only
WAN Connectivity The VMO Wide Area Network will extend between all stores, offices, and Lyon, France We have designed a highly redundant network with.

WAN Connectivity The VMO Wide Area Network will extend between all stores, offices, and Lyon, France We have designed a highly redundant network with.
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
1 Version 3.0 Module 8 Virtual LANs. 2 Version 3.0.

1 Version 3.0 Module 8 Virtual LANs. 2 Version 3.0.
Terri Lahey LCLS Facility Advisory Committee 20 April 2006 LCLS Network Security Terri Lahey.

Terri Lahey LCLS Facility Advisory Committee 20 April 2006 LCLS Network Security Terri Lahey.
Hardware Firewall Feature © N. Ganesan, Ph.D.. Chapter Objectives Show the configuration of a hardware firewall such as Dlink DI 604 Illustrate the sharing.

Hardware Firewall Feature © N. Ganesan, Ph.D.. Chapter Objectives Show the configuration of a hardware firewall such as Dlink DI 604 Illustrate the sharing.
 All of you should be able to describe how a network works.  Most of you will be able to identify the main devices necessary for a network.  Some of.

 All of you should be able to describe how a network works.  Most of you will be able to identify the main devices necessary for a network.  Some of.
PKI Network Authentication Dartmouth Applications Robert Brentrup Educause/Dartmouth PKI Summit July 27, 2005.

PKI Network Authentication Dartmouth Applications Robert Brentrup Educause/Dartmouth PKI Summit July 27, 2005.
Campus Firewalling Dearbhla O’Reilly Network Manager Dublin Institute of Technology.

Campus Firewalling Dearbhla O’Reilly Network Manager Dublin Institute of Technology.
MTA Networking Fundamentals

MTA Networking Fundamentals
Quintum Confidential and Proprietary 1 Quintum Technologies, Inc. Session Border Controller and VoIP Devices Behind Firewalls Tim Thornton, CTO.

Quintum Confidential and Proprietary 1 Quintum Technologies, Inc. Session Border Controller and VoIP Devices Behind Firewalls Tim Thornton, CTO.
Firewall Network Processor™: Technical Concept and Business Solutions FNP™ – is a trademark of Fractel Inc. December 2008 Columbus.

Firewall Network Processor™: Technical Concept and Business Solutions FNP™ – is a trademark of Fractel Inc. December 2008 Columbus.
HPLL Demo. How did we get here? Brainstormed how we would utilize the WAN Talked with TEACH about our plan Presented this idea to the TRITON Board Converted.

HPLL Demo. How did we get here? Brainstormed how we would utilize the WAN Talked with TEACH about our plan Presented this idea to the TRITON Board Converted.
Module 1: Configuring Windows Server 2008. Module Overview Describe Windows Server 2008 roles Describe Windows Server 2008 features Describe Windows Server.

Module 1: Configuring Windows Server Module Overview Describe Windows Server 2008 roles Describe Windows Server 2008 features Describe Windows Server.
1 Semester 3 Threaded Case Study Royal Palm 41306-3A/3B Ip Siu Tik Tsang Man Wu Wai Hung Wong Lai Ting.

1 Semester 3 Threaded Case Study Royal Palm A/3B Ip Siu Tik Tsang Man Wu Wai Hung Wong Lai Ting.
Securing the Network Infrastructure. Firewalls Typically used to filter packets Designed to prevent malicious packets from entering the network or its.

Securing the Network Infrastructure. Firewalls Typically used to filter packets Designed to prevent malicious packets from entering the network or its.
Campus Wireless Network kitenet Koji OKAMURA Research Institute for Information Technology, Kyushu University.

Campus Wireless Network kitenet Koji OKAMURA Research Institute for Information Technology, Kyushu University.

Similar presentations

Ads by Google