Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security Professor Professor Dr. Adeel Akram.

Published byArnold Griffin Brooks Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Security Professor Professor Dr. Adeel Akram."— Presentation transcript:

1 Network Security Professor Professor Dr. Adeel Akram

2 Firewalls: A Practical Guide

3 Outline ► ICSA Labs ► ICSA Certified Firewalls  Kerio Winroute Firewall  Astaro Security Gateway  WatchGuard X1000 Firewall ► CASE Study  Kerio Winroute Firewall 6

4 About ICSA Labs ► For over a decade, ICSA Labs, an independent division of Cybertrust, Inc., has been the security industry's central authority for research, intelligence, and certification testing of products. ► ICSA Labs sets standards for information security products and certifies over 95% of the installed base of anti-virus, firewall, IPSec VPN, cryptography, SSL VPN, network IPS, anti-spyware and PC firewall products commonly deployed in the world today.

5 ICSA Labs Certification ► ICSA Labs, formerly known as the International Computer Security Association, manages and sponsors security consortia that provide a forum for intelligence sharing among the leading vendors of security products. ► In addition, ICSA Labs publishes surveys, security industry studies and buyers' guides for computer security products

6 ICSA Labs Certification ► The goal for ICSA Labs Certification is to enhance and improve security implementations of network and Internet computing, which will improve commercial security and its use of appropriate security products, services, policies, techniques, and procedures. ► Certification enforces overall confidence in computing and drives enhanced security measures while at the same time, decreasing the intrusion of security measures in everyday life. ► Certification also promotes user acceptance of increased security while improving the ease of use, and the invisible, automatic, and seamless integration of security technology in everyday computing.

7 ICSA Labs Test Areas ► Anti-Spyware ► Antivirus ► Cryptography ► FIPS 140-2 Cryptographic Module Testing ► Firewalls ► Intrusion Detection ► IPsec ► Network Intrusion Prevention ► PC Firewalls ► PIV / FIPS 201 ► Premier Services ► SSL-TLS ► Wireless ► Wireless

8 Prominent ICSA Certified Firewalls ► Kerio Winroute Firewall for Windows Kerio ► Astaro Security Linux Astaro ► WatchGuard Firebox System Family WatchGuard ► Juniper Networks NetScreen Firewall Family Juniper Networks Juniper Networks ► Microsoft Internet Security and Acceleration Server Microsoft ► CISCO PIX Firewall Family CISCO ► Check Point SecurePlatform NG Check Point Check Point ► Novell BorderManager Novell

9 KERIO Winroute Firewall ► Corporate & enterprise network firewall: ► Kerio WinRoute Firewall™ is a corporate gateway firewall for small and medium-sized businesses. ► Equipped with VPN server, optional embedded McAfee Anti-Virus, integrated customizable ISS Orange Web Filter, and user-specific Internet access management, Kerio WinRoute Firewall provides a multi-layer architecture for protecting networks, servers and users. ► http://www.kerio.com http://www.kerio.com

10 ASTARO Security Gateway ► http://www.astaro.com http://www.astaro.com ► https://demo.astaro.com https://demo.astaro.com Astaro Appliances Astaro Software Astaro Report Manager Configuration Manager Astaro Secure Client Astaro Appliances Astaro Software Astaro Report Manager Configuration Manager Astaro Secure Client

11 WATCHGUARD Firebox Family ► Firebox Soho ► Firebox Edge ► Firebox Core ► Firebox Peak X-Series }

12 CASE STUDY: KWF 6 ► Kerio Winroute Firewall  Comes as an installer package ► ~ 22 MB (kerio-kwf-6.2.0-1382-win.exe)  Installs on all current versions of Windows

13 KWF6: Installation ► ► System Requirements   CPU Intel Pentium II or compatible; 300 MHz   128 MB RAM   2 network interfaces   50 MB disc space free for the installation   Free memory for logs (depends on traffic load and selected logging level)   The product supports for the following operating systems:   Windows 2000   Windows XP   Windows Server 2003   Note: The Client for Microsoft Networks component must be installed for all supported operating systems, otherwise WinRoute will not be available as a service and NTML authentication will not function. The component is included in installation packages of all supported operating systems.

14 Installation and Basic Configuration ► ► Launch the installation program  kerio-kwf-6.2.0-1382-win.exe

15 Select Components

16 ► ► WinRoute Firewall Engine — core of the application ► ► WinRoute Engine Monitor — utility for WinRoute Firewall Engine control and monitoring ► ► its status (icon in the system’s notification area) ► ► VPN Support — proprietary VPN solution developed by Kerio Technologies, ► ► Kerio Administration Console — the Kerio Administration Console application (universal console for all server applications of Kerio Technologies)

17 ► ► Restart the machine when the installation has completed. This will install the WinRoute low-level driver into the system kernel. ► ► WinRoute Engine will be automatically launched after restart. ► ► The engine runs as a service. ► ► The WinRoute Engine Monitor will be launched after a user login. This utility monitors the Engine status and is used to start or stop the engine. ► ► WinRoute Engine Monitor icon is displayed in the system’s notification area (system tray).

18 Conflicting System Services ► ► Internet Connection Sharing and Internet Connection Firewall ► ► Universal Plug and Play Device Host and SSDP Discovery Service

19

20 Admin Console Settings

21 Remote Access to Admin Console

22 Restart After Install ► Engine Monitor:  Appears as system tray icon  Right Clicking shows context Menu Menu

23 First Start Setup

24 Configuration Wizard

25

26 Internet thru Ethernet

27 Internet thru Dialup

28 Allowed Internet Services to Clients

29 Local Services Publishing

30

31

32 Enable NAT

33 Lets go to the Actual Process ► Kerio Installed on Lab PCs

34 References ► http://download.kerio.com/archive/ Select Kerio Control (Firewall Software / Appliance) http://download.kerio.com/archive/ ► http://www.astaro.com/products http://www.astaro.com/products ► http://www.astaro.com/support/downloads http://www.astaro.com/support/downloads ► https://support.astaro.com/support/index.php/Main_Page https://support.astaro.com/support/index.php/Main_Page ► http://www.watchguard.com/products/compare.asp http://www.watchguard.com/products/compare.asp ► https://www.icsalabs.com https://www.icsalabs.com

35 Kerio Control Packages Packages Kerio Control - Windows (32-bit) Download (USA)Download (USA) | Download (Europe)Download (Europe) Kerio Control - Windows (64-bit) Download (USA)Download (USA) | Download (Europe)Download (Europe) Kerio Control Parallels Appliance Download (USA)Download (USA) | Download (Europe)Download (Europe) Kerio Control Software Appliance Download (USA)Download (USA) | Download (Europe)Download (Europe) Kerio Control VMware Appliance (VMX) Download (USA)Download (USA) | Download (Europe)Download (Europe)

36 Kerio Control Documentation Documentation (for version 7.1.0) Administrator Guide - HTML (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) Administrator Guide - PDF (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) Box Installation Guide - PDF (multilingual) Download (USA)Download (USA) | Download (Europe)Download (Europe) Kerio Control Release Notes - HTML (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) Kerio Control Release Notes - PDF (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) Step-by-Step Guide - HTML (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) Step-by-Step Guide - PDF (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) User Guide - HTML (English) Download (USA)Download (USA) | Download (Europe)Download (Europe) User Guide - PDF (English) Download (USA)Download (USA) | Download (Europe)Download (Europe)

37 Questions ??????????????? ??????????????? ???? adeel.akram@gmail.com

Download ppt "Network Security Professor Professor Dr. Adeel Akram."

Similar presentations

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Introducing Kaspersky OpenSpace TM Security Introducing Kaspersky ® OpenSpace TM Security Available February 15, 2007.

Introducing Kaspersky OpenSpace TM Security Introducing Kaspersky ® OpenSpace TM Security Available February 15, 2007.
Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.

Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
IT:Network:Applications VIRTUAL DESKTOP INFRASTRUCTURE.

IT:Network:Applications VIRTUAL DESKTOP INFRASTRUCTURE.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Implementing Secure Converged Wide Area Networks (ISCW)

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Implementing Secure Converged Wide Area Networks (ISCW)
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 8: Implementing and Managing Printers.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 8: Implementing and Managing Printers.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
Server 2008 Terminal Services and Remote Desktop Services Basic application access is possible without Citrix, and Server 2008 R2 adds on some key features.

Server 2008 Terminal Services and Remote Desktop Services Basic application access is possible without Citrix, and Server 2008 R2 adds on some key features.
1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.

1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.
Kaspersky Open Space Security: Release 2 World-class security solution for your business.

Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Ran Oelgiesser, Sr. Product Manager Praveen Vijayaraghavan, Program Manager (Virtual PC) Yigal Edery, Group Program Manager (MED-V)

Ran Oelgiesser, Sr. Product Manager Praveen Vijayaraghavan, Program Manager (Virtual PC) Yigal Edery, Group Program Manager (MED-V)
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 3 Desktop Virtualization McGraw-Hill.

© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 3 Desktop Virtualization McGraw-Hill.
Module 16: Software Maintenance Using Windows Server Update Services.

Module 16: Software Maintenance Using Windows Server Update Services.
16.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.

16.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.

Similar presentations

Ads by Google