Presentation is loading. Please wait.

Presentation is loading. Please wait.

Firewall Configurations Responses from the ETF (the names have been changed to protect the innocent..)

Published byKerrie Ramsey Modified over 9 years ago

Similar presentations

Presentation on theme: "Firewall Configurations Responses from the ETF (the names have been changed to protect the innocent..)"— Presentation transcript:

1 Firewall Configurations Responses from the ETF (the names have been changed to protect the innocent..)

2 Questions Where are gatekeepers w.r.t the firewall(s)? Where would you be happy with a firewall? Firewalls between resources and gatekeepers? Local access to gatekeepers trusted more? Client or server connections? Can make quick changes to the firewall? Would be selective in allowing access through the firewall?

3 Responses: Current F/W status Some sites with NO firewall at all Most sites have a site firewall (hardware) Some sites have different security domains Some sites run software firewalls in addition to site-wide firewalls Most sites expect firewall to become more restrictive in the future

4 Responses 2: Ideal F/W Position Most not happy with software firewall on the gatekeeper Most encourage use of personal firewalls Some happy with gatekeeper outside of firewall, resources inside Any firewall affecting the gatekeeper must be fast

5 Responses 3:Resources Most have no firewalling between gatekeeper and resources (gatekeeper on resources!) Firewalling/security between gatekeeper and resources likely to increase Local users avoid site firewall

6 Responses 4: Client/Server Most expect client and server access to their gatekeeper Some would prefer access based on certificate possession rather than IP address

7 Responses 5: Speed of Firewall Changes Site (hardware) firewalls difficult to make changes to quickly (less than 24 hours) Software firewalls can be changed more quickly

8 Responses 6: Access to all Selective access preferable Most prefer to be able to offer access through firewalls to small groups – project members, VOs etc. Access to some resources for all, with access to specific resource limited to collaborators etc.

9 Impossible? Perhaps… A Single Solution

Download ppt "Firewall Configurations Responses from the ETF (the names have been changed to protect the innocent..)"

Similar presentations

Clique/Trust Solution Suitable for Level 2 Grid. Trusted Host Database Remote database of IP addresses, port ranges etc. Accessible by firewall administrators.

Clique/Trust Solution Suitable for Level 2 Grid. Trusted Host Database Remote database of IP addresses, port ranges etc. Accessible by firewall administrators.
Module 13: Implementing ISA Server 2004 Enterprise Edition: Site-to-Site VPN Scenario.

Module 13: Implementing ISA Server 2004 Enterprise Edition: Site-to-Site VPN Scenario.
TERMINAL SERVER DEPLOYMENT PLAN. STEP 1: PREPARATION  UTILIZE THE CURRENT SERVER FOR: ACTIVE DIRECTORY (AD) ACTIVE DIRECTORY (AD) NEEDED FOR STORAGE.

TERMINAL SERVER DEPLOYMENT PLAN. STEP 1: PREPARATION  UTILIZE THE CURRENT SERVER FOR: ACTIVE DIRECTORY (AD) ACTIVE DIRECTORY (AD) NEEDED FOR STORAGE.
Share Your PC Get Started. Sharing a computer used to mean that others could see your private files, install software you didn't want, or change your.

Share Your PC Get Started. Sharing a computer used to mean that others could see your private files, install software you didn't want, or change your.
Virtual LANs.

Virtual LANs.
Firewalls : usage Data encryption Access control : usage restriction on some protocols/ports/services Authentication : only authorized users and hosts.

Firewalls : usage Data encryption Access control : usage restriction on some protocols/ports/services Authentication : only authorized users and hosts.
Access Control for Networks Problems: –Enforce an access control policy Allow trust relationships among machines –Protect local internet from outsiders.

Access Control for Networks Problems: –Enforce an access control policy Allow trust relationships among machines –Protect local internet from outsiders.
Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.

Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.
VoIP – Security Considerations An Examination Ricardo Estevez CS 522 / Computer Communication Fall 2003.

VoIP – Security Considerations An Examination Ricardo Estevez CS 522 / Computer Communication Fall 2003.
E-commerce security by Asif Dalwai 886 39 5409. Introduction E-commerce applications Threats in e-commerce applications Measures to handle threats Incorporate.

E-commerce security by Asif Dalwai Introduction E-commerce applications Threats in e-commerce applications Measures to handle threats Incorporate.
Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.

Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Printer Installation Ben Wu A&S IT 09/18/2007. Outline  Preparation  Local Printer Installation  Network Printer Installation  Printer Sharing  Other.

Printer Installation Ben Wu A&S IT 09/18/2007. Outline  Preparation  Local Printer Installation  Network Printer Installation  Printer Sharing  Other.
Firewalls Marin Stamov. Introduction Technological barrier designed to prevent unauthorized or unwanted communications between computer networks or hosts.

Firewalls Marin Stamov. Introduction Technological barrier designed to prevent unauthorized or unwanted communications between computer networks or hosts.
FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.
Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011.

Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.
Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.

Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.
Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.

Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.
Hafez Barghouthi. Model for Network Access Security (our concern) Patrick BoursAuthentication Course 2007/20082.

Hafez Barghouthi. Model for Network Access Security (our concern) Patrick BoursAuthentication Course 2007/20082.

Similar presentations

Ads by Google