firewall and unified threat
play

Firewall and Unified Threat Management (UTM) End to End Service - PowerPoint PPT Presentation

Mar 03, 2023 •1.01k likes •1.18k views

Firewall and Unified Threat Management (UTM) End to End Service Stats SA for a period of 36 months BRIEFING SESSION STATS SA ICT Table of contents Purpose of the Bid Scope of work of the Bid Network diagram explained As it is and to be

  1. Firewall and Unified Threat Management (UTM) End to End Service Stats SA for a period of 36 months BRIEFING SESSION STATS SA ICT

  2. Table of contents Purpose of the Bid Scope of work of the Bid Network diagram explained – As it is and to be diagram Summary of Technical requirement Proof of concept

  3. Purpose of the Bid The purpose of this RFB is to invite Suppliers (hereinafter referred to as “bidders”) to submit bid for ”Provision of a Firewall and Unified Threat Management (UTM) End to End Service to Statistics South Africa (Stats SA) for a period of 36 months” .

  4. Scope of Work of the Bid To provide the Next Generation Firewall (NGFW) and Unified Threat Management (UTM) End to End Service. Thus: • This means the provider of an application program software and system will supply all the software as well as hardware requirements of the customer such that no other vendor is involved to meet the needs. • E2ES includes installation, integration, and setup. • This will however be hosted on Stats SA sites and SITA Centurion although the equipment will not belong to Stats SA.

  5. Scope of Work of the Bid The Bidders are to Provide the NGFW & UTMs End to End service that has the following Residual throughput, RAM, CPU when all the firewall features as depicted in the following table are enabled . Office area QTY AV AC ATP/AM Webfilte IPS DPI SSL Residual P/TP r Insp throuput, RAM, ecti CPU on >1.5Gbps,<70% Edge/H 2 X X X X X X X of RAM,<80% of O CPU usage POs 9 X X X X X X X >10 Mbps,<70% of RAM,<70% of CPU usage >100 DR 1 X X X X X X X Mbps,<70% of RAM,<70% of CPU usage >100 APN 1 X X X X X X X Mbps,<70% of RAM,<70% of CPU usage

  6. Scope of Work of the Bid Egde (SITA), HO and Provincial Offices • Install and configure the NGFW solution during weekdays, over the weekends, during holidays or after hours. • Configure high availability setup • Setup, intergrate centralised management and reporting console. • Deploy own tools of trade for real time monitoring and analysis of the firewall logs and these will send logs to the organisational SIEM. • Supplier must configure the firewall zones (different network areas) e.g. Demilitarized zone (DMZ). • Setup and configure all Firewall policies and rules. • Certify NGFW solution implementation by the OEM

  7. Network Diagram – As is.

  8. Network Diagram – To be.

  9. Summary of Technical Requirements NGFW HA Pair (SITA & Head Office) Requirements Performance >5 Gbps up to 16 Gbps Firewall throughput Throughput rate with all features enabled >1.5 Gbps VPN (IPSec) throughput > 1 Gbps VPN Tunnels >1500 SSL VPN throughput 1Gbps Max SSL sessions 100000 Concurrent Connections >1 mil New TCP connections >25000 NGFW HA Pair (HO) HTTP (s) Inspection >1 Gbps NGFW UTM (PO) Requirements Performance > 4 Mbps up to 250 Mbps Firewall throughput Throughput rate with all features enabled up to 125 Mbps Max SSL sessions 10 000 Concurrent Connections 100 k New TCP connections 10 000 HTTP (s) Inspection 10 Mbps NGFW (DR SITE) Requirements Performance > 4 Mbps up to 250 Mbps Firewall throughput Throughput rate with all features enabled >100 Mbps Max SSL sessions 10 000 Concurrent Connections 100 k New TCP connections 10 000 HTTP (s) Inspection 10 Mbps

  10. Summary of Technical Requirements APN Virtual FW Requirements Performance > 4 Mbps up to 250 Mbps Firewall throughput Throughput rate with all features enabled >100 Mbps Max SSL sessions 10 000 Concurrent Connections 100 k New TCP connections 10 000 HTTP (s) Inspection 10 Mbps

  11. Proof of Concept The Bidder must have the proposed physical Firewall device available in order to participate in the POC. The Proof of concept will be conducted using IXIA Breaking Point Test – end to end solution It should be noted that the maximum throughput capacity of the IXIA Breaking point is 40 Gbps. The Proof Of concept will simulate both good and bad traffic to validate and optimize Firewall under the most realistic conditions. It will simulate real-world legitimate traffic, DDOS, exploits, malware, fuzzing e.t.c. All types of traffic will be tested. All of the Proof of Concept (POC) requirements must be demonstrated in full.

  12. THANK YOU

  13. QUESTIONS??

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Sophos XG Firewall IP Partners ICT Systems &amp; Services www.ippartners.gr XG Firewall

Sophos XG Firewall IP Partners ICT Systems &amp; Services www.ippartners.gr XG Firewall

Sophos XG Firewall IP Partners ICT Systems &amp; Services www.ippartners.gr XG Firewall Overview Todays top firewall problems What IT managers say about their existing firewall Firewall Satisfaction Survey (Spiceworks 2017) Top

548 views • 52 slides
Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation

Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation

Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation controlled connection between networks at different security levels = boundary protection ( L1 &gt; L2 ) network at network at security

1.07k views • 67 slides
S9385 AI-Based Anomaly Detections and Threat Forecasting for Unified Communications Networks

S9385 AI-Based Anomaly Detections and Threat Forecasting for Unified Communications Networks

S9385 AI-Based Anomaly Detections and Threat Forecasting for Unified Communications Networks Kevin Riley CTO, Ribbon Tim Thornton - Director Software Engineering, Ribbon About Ribbon Ribbon is a global leader in secure real-time

474 views • 31 slides
Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts

Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts

Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts and networks connected to other hosts and networks against attacks from the outside and from the inside. a firewall is a network security system

440 views • 30 slides
Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly

Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly

Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly Creswell Crow-Applegate-Lorane Fern Ridge Junction City Lowell Mapleton Screened, but exempt from policies Marcola

539 views • 15 slides
Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3

Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3

Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3 State-independent interior operators Interior operator from HP recovery 6 5 Resolution of the puzzle Effect of infalling observer 7 Discussions Beni

1.61k views • 106 slides
FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A firewall is only as good as its configuration Big deal, it should be easy to configure a firewall, right? Basically... no. A Quantitative

507 views • 14 slides
Assessment What is Threat Assessment Threat assessment is the process of gathering

Assessment What is Threat Assessment Threat assessment is the process of gathering

Threat Assessment What is Threat Assessment Threat assessment is the process of gathering information to understand the threat of violence posed by a person. Threat management is the process of developing and executing plans to mitigate

332 views • 15 slides
Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple

Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple

Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple firewall using Netfilter Iptables firewall in Linux Stateful Firewall Application Firewall Evading Firewalls 2 Firewalls

811 views • 55 slides
Phases of Disaster Despair Threat Threat Phase: Small events serve as a warning or threat to

Phases of Disaster Despair Threat Threat Phase: Small events serve as a warning or threat to

Honeymoon Threat Restoration Rescue Phases of Disaster Despair Threat Threat Phase: Small events serve as a warning or threat to normal living. A disaster has not yet oc- curred, but there is a sense of impending doom. Individual

604 views • 6 slides
Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs.

Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs.

Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs. Stateful Inspection Firewall Topologies Chapter 8 Firewall Rulebases Lecturer: Pei-yih Ting 1 2 Perimeter Security Devices Routers

291 views • 7 slides
Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and Exploitation Wojciech Mostowski and Erik Poll Digital Security Radboud University Nijmegen The Netherlands http://www.cs.ru.nl/~{woj,erikpoll}/

818 views • 42 slides
What Does This Advanced Threat Landscape Look Like? Advanced Threat Landscape

What Does This Advanced Threat Landscape Look Like? Advanced Threat Landscape

DDoS &amp; Modern Threat Motives Dan Holden Director, ASERT What Does This Advanced Threat Landscape Look Like? Advanced Threat Landscape Geo-poli:cal More defenses ? App/Content t a

1.13k views • 44 slides
Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a

Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a

Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a firewall? Term first used in 1851 Henry Ford used them to protect passengers from engine fires, smoke and heat. Computer networks: a part of a

500 views • 21 slides
Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls?

Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls?

Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls? Network Address Translation Types of Firewalls Linux/Windows Firewalls pfSense Blue Team Activity Brief History Firewall

348 views • 30 slides
Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between NGFW and classic firewalls: Classic Firewall Next Generation Firewall Traffic filtering using Port, IP, and protocol Supported Supported VPN

533 views • 25 slides
SMALL ROBOTS WITH STRATEGIC EFFECTS 29 APR 2016 LTC Jasper Jeffers Army War College Fellow at

SMALL ROBOTS WITH STRATEGIC EFFECTS 29 APR 2016 LTC Jasper Jeffers Army War College Fellow at

SMALL ROBOTS WITH STRATEGIC EFFECTS 29 APR 2016 LTC Jasper Jeffers Army War College Fellow at Duke University Surveillance and counter-surveillance will become the major combat form on the ground battlefield in the future. Equipped

889 views • 20 slides
AMB. CAROLINE USIKPEDO-OMONIYE FOUNDER / NATIONAL PRESIDENT NDWPD At the 14 th Global Major Groups

AMB. CAROLINE USIKPEDO-OMONIYE FOUNDER / NATIONAL PRESIDENT NDWPD At the 14 th Global Major Groups

PRESENTATION OF THE NIGER DELTA WOMEN S MOVEMENT FOR PEACE AND DEVELOPMENT (NDWPD) BY AMB. CAROLINE USIKPEDO-OMONIYE FOUNDER / NATIONAL PRESIDENT NDWPD At the 14 th Global Major Groups and Stakeholders Forum (GMGSF-14) 16-17 February 2013,

322 views • 16 slides
PT PURADELTA LESTARI TBK MANAGEMENT PRESENTATION SEPTEMBER 2018 UNAUDITED RESULTS OCTOBER 2018

PT PURADELTA LESTARI TBK MANAGEMENT PRESENTATION SEPTEMBER 2018 UNAUDITED RESULTS OCTOBER 2018

PT PURADELTA LESTARI TBK MANAGEMENT PRESENTATION SEPTEMBER 2018 UNAUDITED RESULTS OCTOBER 2018 STRICTLY CONFIDENTIAL DISCLAIMER THIS PRESENTATION IS FOR INFORMATION PURPOSES ONLY. IT IS NOT, IS NOT INTENDED TO BE, AND SHALL NOT BE CONSTRUED

554 views • 28 slides
Restoring Open Skies: Addressing Subsidized Competition from State-Owned Airlines in Qatar and

Restoring Open Skies: Addressing Subsidized Competition from State-Owned Airlines in Qatar and

Restoring Open Skies: Addressing Subsidized Competition from State-Owned Airlines in Qatar and the UAE January 2015 1 U.S. Open Skies Policy Is Predicated On a Level Playing Field Since 1992, the United States has successfully 1 removed

326 views • 19 slides
North Korea Nathan Jones, Jordan Elliott, Kimberly Davis Overview Korean War June 25, 1950 o

North Korea Nathan Jones, Jordan Elliott, Kimberly Davis Overview Korean War June 25, 1950 o

North Korea Nathan Jones, Jordan Elliott, Kimberly Davis Overview Korean War June 25, 1950 o 75,000 North Korean Troops storm across the 38th parallel July 1950 o America and 15 other nations contribute troops to push North Korea back

993 views • 16 slides
The hisTorical and legal conTexTs of israels Borders 1 Nicholas Rostow IntroductIon More

The hisTorical and legal conTexTs of israels Borders 1 Nicholas Rostow IntroductIon More

The hisTorical and legal conTexTs of israels Borders 1 Nicholas Rostow IntroductIon More than sixty years afuer the admission to the United Nations of the state of Israel with no internationally recognized boundaries, 2 a central question

201 views • 9 slides
The Israeli Peace Initiative Presentation and Evaluation On April 6 th 2011, a group of

The Israeli Peace Initiative Presentation and Evaluation On April 6 th 2011, a group of

The Israeli Peace Initiative Presentation and Evaluation On April 6 th 2011, a group of prominent Israeli civilians published the &quot;Israeli Peace Initiative&quot; - a document which offers an end to the Israeli-Arab conflict based upon the

296 views • 3 slides
IOT and Digital Manufacturing The new evolution Alexis Malchair Solutions Sales Manager,

IOT and Digital Manufacturing The new evolution Alexis Malchair Solutions Sales Manager,

IOT and Digital Manufacturing The new evolution Alexis Malchair Solutions Sales Manager, Internet of Things June 2016 Digitization Trends Across Major Industries Where is the value Unconnected 50 Billion Connect the Smart Manufacturing Grid

163 views • 14 slides

More recommend