firewall
play

Firewall What is it? Do we need one? Oxford Hills School District - PowerPoint PPT Presentation

Dec 19, 2023 •283 likes •500 views

Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a firewall? Term first used in 1851 Henry Ford used them to protect passengers from engine fires, smoke and heat. Computer networks: a part of a

  1. Firewall What is it? Do we need one? Oxford Hills School District • March 5, 2018

  2. What is a firewall? Term first used in 1851 Henry Ford used them to protect passengers from engine fires, smoke and heat. Computer networks: a part of a computer system or network that is designed to block unauthorized access while permitting authorized communication.

  4. What is a firewall for the internet? Data firewalls protect machines, people and data on inside from uglies on outside. Allows good stuff to pass through Firewalls distinguish themselves by their ability to: ● discern the good from the ugly ● detect when risky data is leaving the protected zone (DLP) ● detect and prevent zero-day exploits ● and much more

  5. Ugly stuff Viruses Bots Ransomware DDoS attacks Phishing (r.colpitts@msadl7.org) "Dark Overlord" targeting school districts

  6. Our firewall history WatchGuard for a number of years. Too slow, too old. Untangle until two years ago. Became a bottleneck. Crashed frequently. Currently have very limited protection from the NetworkMaine router. Currently protecting payroll via private IP. SIS is protected by NAT and InfiniteCampus.

  7. Is there a cyber threat? Yes. See http://map.norsecorp.com

  8. Yes, we have a problem • In the past year, of the 74 most common exploit kit and payload infection paths, 99% of them used evasion techniques. 1 • Attackers release 360,000 new malware samples every day. 2 • The number of records exposed by data breaches totaled over 174 million 3 and the average cost of breaches was $3.6 million. The cost of cleaning up a small business after it has been hacked is $690,000. 4 1 Minerva Labs Research Report 2 Infosecurity Magazine: 360K New Malware Samples Hit the Scene Every Day 3 Identity Theft Resource Center 4 2017 Ponemon Cost of Data Breach Study

  9. Security team Fortunately, I have a large security team! Staff and students A bit of regular training is needed.

  10. Un-Security team Unfortunately, I have a large un-security team! Staff and students A bit of regular training is needed.

  11. Firewall features not security related Traffic composition Traffic shaping, quality of service (QoS) Google integration Switch and/or WAP integration Reporting

  12. Firewall on our network One hour's usage 1/19/2018 7:30am-8:30am

  13. Firewall on our network 15 minutes of usage 1/19/2018 8:30 - 8:45AM

  14. Firewall on our network One hour's usage 1/19/2018 7:50am-8:50am

  16. User activity From 6:45AM 2/15 through 6:30AM 2/16 Why a peak at 8:00PM?

  17. This is more detail... 02/15 19:30:00- 02/15 20:29:59 Exacqvision is security camera video traffic. 2 users.

  18. Threat activity From 6:45AM 2/15 through 6:30AM 2/16

  19. High level report Firewall demo installed in tap mode 21 page report produced analyzing one week of HS traffic in January Good news: no malware detected Bad news: lots of threats, CnC traffic detected

  20. Firewall reviews ERate supported* Conferred with 7 vendors Released RFP for each of 6 vendors Developed feature matrix Arrived at rank order of firewalls excluding cost Added in cost to find best mix of features and cost Recommend to Board Budget Committee for inclusion in budget *Up to ERate limit of $157,000 for HS, but that has to include WiFi also!

  21. Conclusions Yes, we need a very serious firewall Yes, we can afford a good one Having a firewall is no guarantee of safety! Questions?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Sophos XG Firewall IP Partners ICT Systems & Services www.ippartners.gr XG Firewall

Sophos XG Firewall IP Partners ICT Systems & Services www.ippartners.gr XG Firewall

Sophos XG Firewall IP Partners ICT Systems & Services www.ippartners.gr XG Firewall Overview Todays top firewall problems What IT managers say about their existing firewall Firewall Satisfaction Survey (Spiceworks 2017) Top

548 views • 52 slides
Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation

Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation

Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation controlled connection between networks at different security levels = boundary protection ( L1 > L2 ) network at network at security

1.07k views • 67 slides
Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts

Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts

Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts and networks connected to other hosts and networks against attacks from the outside and from the inside. a firewall is a network security system

440 views • 30 slides
Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly

Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly

Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly Creswell Crow-Applegate-Lorane Fern Ridge Junction City Lowell Mapleton Screened, but exempt from policies Marcola

539 views • 15 slides
Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3

Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3

Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3 State-independent interior operators Interior operator from HP recovery 6 5 Resolution of the puzzle Effect of infalling observer 7 Discussions Beni

1.61k views • 106 slides
FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A firewall is only as good as its configuration Big deal, it should be easy to configure a firewall, right? Basically... no. A Quantitative

507 views • 14 slides
Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple

Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple

Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple firewall using Netfilter Iptables firewall in Linux Stateful Firewall Application Firewall Evading Firewalls 2 Firewalls

811 views • 55 slides
Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs.

Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs.

Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs. Stateful Inspection Firewall Topologies Chapter 8 Firewall Rulebases Lecturer: Pei-yih Ting 1 2 Perimeter Security Devices Routers

291 views • 7 slides
Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and Exploitation Wojciech Mostowski and Erik Poll Digital Security Radboud University Nijmegen The Netherlands http://www.cs.ru.nl/~{woj,erikpoll}/

818 views • 42 slides
Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls?

Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls?

Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls? Network Address Translation Types of Firewalls Linux/Windows Firewalls pfSense Blue Team Activity Brief History Firewall

348 views • 30 slides
Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between NGFW and classic firewalls: Classic Firewall Next Generation Firewall Traffic filtering using Port, IP, and protocol Supported Supported VPN

1.23k views • 26 slides
Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between NGFW and classic firewalls: Classic Firewall Next Generation Firewall Traffic filtering using Port, IP, and protocol Supported Supported VPN

533 views • 25 slides
Firewall Builder Vadim Kurland vadim@fwbuilder.org http://www.fwbuilder.org Challenges of

Firewall Builder Vadim Kurland vadim@fwbuilder.org http://www.fwbuilder.org Challenges of

Firewall Builder Vadim Kurland vadim@fwbuilder.org http://www.fwbuilder.org Challenges of firewall configuration complexity leads to errors coordinated changes on many devices are hard multi-vendor environments make the job even

314 views • 28 slides
1 Four general techniques: Design goals: All traffic from inside to outside must pass

1 Four general techniques: Design goals: All traffic from inside to outside must pass

Firewall Design Principles Firewall Characteristics Types of Firewalls Special Thanks to our friends at The Blekinge Institute of Technology, Sweden for providing the basis for these slides . Fall 2008 CS 334: Computer Security 1

546 views • 5 slides
Firewall Architectures for High-Speed Networks Errin W. Fulp DOE Network Research PI Meeting

Firewall Architectures for High-Speed Networks Errin W. Fulp DOE Network Research PI Meeting

Firewall Architectures for High-Speed Networks Errin W. Fulp DOE Network Research PI Meeting September 28, 2005 1 Project Objectives Methods that improve network firewall performance 1. Develop policy optim ization techniques Formal

221 views • 9 slides
Firewall-On-Demand Service Andreas Polyrakis, GRNET 15-16 February 2012, 5 th TF-NOC meeting,

Firewall-On-Demand Service Andreas Polyrakis, GRNET 15-16 February 2012, 5 th TF-NOC meeting,

GRNET Firewall-On-Demand Service Andreas Polyrakis, GRNET 15-16 February 2012, 5 th TF-NOC meeting, Dubrovnik, Croatia Contents 2 Firewall-On-Demand Motivation & Technology background Implementation Future plans &

470 views • 26 slides
Project Turris http://www.turris.cz/en/ Ondrej Filip Tech Day March 24, 2014

Project Turris http://www.turris.cz/en/ Ondrej Filip Tech Day March 24, 2014

Project Turris http://www.turris.cz/en/ Ondrej Filip Tech Day March 24, 2014 Singapore Project Turris Started in 2013 project of shared cyberdefense CZ.NIC Labs Main goals Security research End user security

373 views • 19 slides
Parallel Firewall Designs for High-Speed Networks Ryan J. Farley WAKE FOREST US Department of

Parallel Firewall Designs for High-Speed Networks Ryan J. Farley WAKE FOREST US Department of

Wake Forestp pComputer Science + DOE MICS Parallel Firewall Designs for High-Speed Networks 1 Parallel Firewall Designs for High-Speed Networks Ryan J. Farley WAKE FOREST US Department of Energy U N I V E R S I T Y Computer Science Network

1.21k views • 49 slides
Actively Embrace Change Rising of New Players Traditional IT Infrastructure Successful

Actively Embrace Change Rising of New Players Traditional IT Infrastructure Successful

Sangfor HCI The 3rd Gen HCI Driving Hyperconvergence to Fully Converged Actively Embrace Change Rising of New Players Traditional IT Infrastructure Successful Transition in the IT industry Sliding down Azure, Office365 / High-speed AWS

475 views • 22 slides
Marionnet a virtual network laboratory http://www.marionnet.org Jean-Vincent Loddo Luca Saiu

Marionnet a virtual network laboratory http://www.marionnet.org Jean-Vincent Loddo Luca Saiu

Motivation Features Implementation Marionnet a virtual network laboratory http://www.marionnet.org Jean-Vincent Loddo Luca Saiu Laboratoire dInformatique de lUniversit Paris Nord (LIPN) FOSDEM Bruxelles, 2010-02-06

835 views • 31 slides
Solsoft Network Security Change Management Platform Domenick Lionetti VP Sales and Business

Solsoft Network Security Change Management Platform Domenick Lionetti VP Sales and Business

Solsoft Network Security Change Management Platform Domenick Lionetti VP Sales and Business Development AGENDA Todays Netw ork Security Challenges Compliance Issues Customer Use Cases Solsoft Products and Company Summary of Benefits Q

583 views • 29 slides
Governing Board Meeting October 24, 2019 Agenda Welcome CISS Phase 1 Complete CISS

Governing Board Meeting October 24, 2019 Agenda Welcome CISS Phase 1 Complete CISS

Criminal Justice Information System Governing Board Meeting October 24, 2019 Agenda Welcome CISS Phase 1 Complete CISS Phase 2 Deployment Update CJIS Program and Budget Update Qualis: CISS Project Health Other

767 views • 27 slides
Distributed Sensor Data Contextualization at Scale for Threat Intelligence Analysis Jason Trost

Distributed Sensor Data Contextualization at Scale for Threat Intelligence Analysis Jason Trost

Distributed Sensor Data Contextualization at Scale for Threat Intelligence Analysis Jason Trost January 12, 2016 whoami Jason Trost VP of Threat Research @ ThreatStream Previously at Sandia, DoD, Booz Allen, Endgame Inc. Background

473 views • 28 slides
ePouta Infrastructure Jaakko Leinonen Typical Cloud CSC VM cPouta VM You F i r e w

ePouta Infrastructure Jaakko Leinonen Typical Cloud CSC VM cPouta VM You F i r e w

ePouta Infrastructure Jaakko Leinonen Typical Cloud CSC VM cPouta VM You F i r e w Internet a l VM l OpenStack ePouta Architecture CSC Your site Optical Private Network Multiprotocol Label Switching VM Server VM OPN

433 views • 5 slides

More recommend