- Firewall: Firewalls secure the local network by blocking unwanted ports/traffic from external and internal networks. It forms the first line of defense against unwanted intruders peeking into secure data in private networks connected to the Internet, especially intranets. Upon implementing a firewall, Network Address Translation (NAT) can be done based on source and destination IP addresses.
- DMZ (De-Militarized Zone): The local network is secured by employing a different subnet for the servers. It can be configured such that the local network can reach the DMZ but not the other way, unless permitted. The DMZ is especially helpful for organizations hosting their own web pages.
- VPN (IPSEC): VPN Solutions connect offices seamlessly and securely; allow roaming/home/branch office users to access your corporate LAN, with complete security. The Virtual Private Network provides network-to-network connections where traffic is encrypted and sent through the tunnel. Security is enhanced because both header and payload are encrypted. Workstations operating on Windows 2000 and many other commercial clients can connect as a VPN client.
- Firewall & IDS: A Firewall provides robust security at a reasonable cost. It comprehensively secures the internal network and detects hostile activity directed towards your network. Its strengths are:
- Feature rich
- Stateful packet filtering firewall with comprehensive logging
- Unlimited protected (internal) nodes
- No client restrictions or additional licenses
- Snort-based Network IDS, rated highly by the Network Computing magazine
- Secure FTP: File transfers are encrypted for added security.
- Secure Shell: OS shells are secured at many levels to prevent misuse. Only authorized personnel can log on and access specified shells.
|
