Network security common tools & techniques

-
NAT
-          A NAT (Network Address Translation or Network Address Translator) is the virtualization of Internet Protocol (IP) addresses
-          To hide you’re true IP address

The purpose of NAT
Helps improve security and decrease the number of IP addresses an organization needs.
Advantages

-          It prevent the depletion of IPV4 addresses
-          Allows to use your own private IPv4 addressing system and prevent the internal address changes if you change the service provider.

Disadvantages
-          NAT (Network Address Translation) may cause delay in IPv4 communication.
-          NAT (Network Address Translation) cause loss of end-device to end-device IP traceability


Why organization need to implement it?
NAT is a very important aspect of firewall security. It conserves the number of public addresses used within an organization, and it allows for stricter control of access to resources on both sides of the firewall.

 What will happen if not configured properly?

DMZ (Demilitarized zone)

 Protect from authorized access
Are a rescue server that adds an additional layer of security to a network and acts as a buffer between a local area network and less secure network which is the internet.

The purpose of DMZ
The purpose of a DMZ is to add an additional layer of security to an organization's local area network (LAN)

Advantages
 Increase the security of your LAN considerably.
The sensitive information that should be restricted to your LAN will not be stolen or viewed.

Disadvantages
Hackers are able to penetrate your firewall, they will have access to both the DMZ and the internal network


Why organization need to implement it?

 What will happen if not configured properly?


FIREWALL
A system designed to prevent unauthorized access to or from a private network


The purpose of Firewall
Firewall prevents unauthorized internet users from accessing private networks connected to the internet, especially intranets.

Advantages
-          it is a barrier between the internal and external networks, thus helps us preventing unusual access.
-          With a Firewall, you can also control internet speed. The firewall prevention system depends on many criteria such as the sites are used malicious or not and the host of the server is trusted or not etc.
Disadvantages
Why organization need to implement it?
Because can access the internet.

 What will happen if not configured properly?
Cannot access the internet.

Comments

Post a Comment

Popular posts from this blog

Log Review

-
Image
Describe the test and purpose of the test Log analysis is the term used for analysis of computer-generated records for helping organizations, businesses or networks in proactively and reactively mitigating different risks.  Log analysis helps in reducing problem diagnosis, resolution time and in effective management of applications and infrastructure. Checking all the log to find if there ordinary problem Discuss how it works Logs are usually created by network devices, applications, operating systems, and programmable or smart devices. They comprise of several messages that are chronologically arranged and stored on a disk, in files, or in an application like a log collector. Provide example Discuss the solution of there is vulnerability after a test If there is 
Read more

Organizational security types

-
1.        Business Continuance -           Business have come to recognize that some services of the organization have to be delivered continuously without interruption -           Create an IT Business Continuity plan( Backup business Plan) -           Focus on getting the network and systems up and running as quickly as possible. Business continuity and disaster recovery planning -           Management leadership, goals and requirements, business impact analysis, team building and implementation Backup alternatives -           Hardware and software approaches, electronic vaulting Recovery and testing -           Strategies for executing recovery, carrying out drills and types of plan testing Emergency Response -           Preserving assets and life, reducing fraud, theft and vandalism 2.        Backup / Restoration of Data -           When we think of backup, we generally think of secure, offsite tape storage that will be available should we accide
Read more

Network planning - Proof of concept

-
How to design a secured network (methods, the steps) The different types of network security design that will aid good network security 1. Identify the assets such as hardware, software, employee 2. Identify the budget of the company 3. Analyze security risk with the solution (virus- install anti virus) 4. Analyze security requirements 5. List down all the software that can be installed in the network 6. List all the asset (Security hardware for example VPN, firewall, antivirus, DMZ) 7. Identify the secure connection (cable or wire) 8. Design or sketch a network 9. Ask other colleague or approval by the organization or the client An organizations need to update their system frequently, because hackers are discovering new flaws in security network and coming out with new methods to gains access to unauthorized networks. 1.     Network access control -        It is for controlling which users can access you network -        Identifying which users and devices a
Read more