Network Security: Firewall Policies, VPNs, and DMZ Implementation, Assignments of Computer Security

This assignment covers all the first part of the assignment 1.

Typology: Assignments

2020/2021

Uploaded on 07/22/2021

Mo-Adam
Mo-Adam 🇬🇧

5

(1)

4 documents

1 / 10

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Contents
1. Potential impact to IT security of incorrect configuration of firewall policies and third-party
VPNs............................................................................................................................... ....... 2
1.1 DMZ, Static IP and Nat in Network Security..................................................................... 3
2. Three Benefits of Network Monitoring System with supporting reasons.............................8
3. Evaluate a minimum of three of physical and virtual security measures that can be
employed to ensure the integrity of organisational IT security.............................................. 10
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download Network Security: Firewall Policies, VPNs, and DMZ Implementation and more Assignments Computer Security in PDF only on Docsity!

Contents

  1. Potential impact to IT security of incorrect configuration of firewall policies and third-party VPNs...................................................................................................................................... 2 1.1 DMZ, Static IP and Nat in Network Security..................................................................... 3
  2. Three Benefits of Network Monitoring System with supporting reasons............................. 8
  3. Evaluate a minimum of three of physical and virtual security measures that can be employed to ensure the integrity of organisational IT security.............................................. 10

1. Potential impact to IT security of incorrect

configuration of firewall policies and third-

party VPNs.

Firstly, a potential impact it can have to the IT security because of their incorrect configuration is an insider attack. The firewall becomes very useless as the all the attackers in on the system already. As they affect the system by having the computer/network to be overloaded of their storage or processing to lead the system to crash. A misconfigured firewall can present damages to your organisation in many ways than you presume. Firewalls are essentials to network security, and misconfigured firewalls can lead to damage to your organisation by providing an easy access to the attackers. Another potential impact is the network’s performance being lost and failing to protect the system. For example, in dynamic routing was a disadvantage as it less the control being loss which reduces the security. Next potential impact a misconfigured firewall has it may permit more ports than needed to be open, or even permitting hosts that are unauthorised to connect to the server. This can result attackers obtaining control over the server. For instance, a database server that has an open port to allow executing queries from the web server. Which can be neglecting restrictive access to the open port, in that case any attacker can then be connecting to that port and have database attacked through brute force techniques. A potential security breach can occur from VPN when users change VPN client parameters, randomly, such as the pre-shared key. A VPN (Virtual Private Network) operates in binary mode: Either the secureness of the connection is established, or it is not. If the completion of the secure connection is not successful, thus, it will not be possible to have the traffic sent to the secured resources. Therefore, there is a small possibility of a security breach. However, there other ways security breaches from VPN can occur, subtly. Normally, the value is unknown to the user and this can result in the client being unable in establishing a VPN connection. The user will attempt in obtaining a correct VPN configuration parameter, so, it can make the client function again. For instance, the key value can be overhead during an ongoing conversation or be observed. if other security-relevant functions are included by the VPN client such as client firewall then it causes things to become hazardous. The changes of critical client firewall rules that were specifically meant to protect accessing deice cam introduced vulnerabilities. Two negative outcomes:

  1. Desired traffic does not reach its destination that was intended.  It gets blocked

When selecting okay, a series of dialog boxes will be shown permitting you to perform some personality configurations automatically. Figure 1

  1. In the very first dialog box, if the selection of No is done by default the entirety of DMZ subnet will not be shared over the Service Corente network. Computers at partner locations must have the connection to the server on the DMZ as computers from the internet/WAN. If the select no, later you are able in determining which subnets of subnets will be included in the secure network on the Users group tab of the location form. if the selection of Yes is done by default the entirety of DMZ subnet will be available to share on the secure Service Corente service with partners of the Service Corente portal. Computers at partner locations can be permitted in accessing servers on the DMZ just as computer on a LAN have access to them. Figure 2
  2. When the DMZ interface is added, the creation of new user groups are on the User groups tab of the location form: Default user group – DMZ. By creating this default User Group lets Service Portal Corente know, specifically, which sets of address are participating in the DMZ. If select Yes in this dialog, you will fill in the Default User Group – DMZ with its entirety of subnet in which the DMZ exists. If you select NO, the creation of User Group will be done, however, it will be empty. Manually, you must fill in the group on the users group

tab. Figure 3

  1. If you had clicked yes for both previous dialog boxes, the 3rd^ tired dialog box will be shown in informing you that the DMZ subnet will be added to the main default User Group for the port. The default user group has all the address contained which is on the LAN will be permitted to join the Safe Corente Service Network. Figure 4
  2. Automatically, the next dialog permits you to create a pipe on the Partner tab for the DMZ partner to internet Access, permitting all internet’s machines to connect to the Default User Group – DMZ with default DMZ Firewall Policy for your domain. By default, the firewall policy is involved in denying all domestics and foreign traffic. You will be permitted in modifying this pipe and add new pipes for the DMZ partner to Internet Access at any time. If the selection of No is done, no pipes will be created and manually you will have to create the pipe on the Partners tab.

Figure 7 Add all the required IP address to interface as is displayed here: Figure 8 A static default router is added towards the local router: Figure 9 Configuring the DMZ server with the IP Address of 10.1.0.2, network 10.1.0.1 and gateway address of 10.1.0.1. By making DMZ server accessible from the internet 192.168.0.3 you need to configure the dst-nat rule: Figure 10

2. Three Benefits of Network Monitoring

System with supporting reasons

Save space, cost and time

Network monitoring systems will save you cost and time. Without it, it would enhance a lot of investigation’s time, which will cause work hours to be increased. Not only will it increase in expenses, but it can minimise productivity. For each type of problem, administrators can utilise other tools in finding and processing them. But, learning, finding out and utilising other tools all at the same time can be very expensive and time consuming. By utilising a network monitoring system (NMS) solutions, administrators can be handling problems quicker, easier and with limiting security risk. At the same time, business can invest in more by saving costs for the human resources compared to finding an expert who can utilises all other tools. Importantly, when problems happen the admins can handle them anywhere. Networking monitoring system will be ensuring the business’s confidentiality and security. For instances:  Often, today’s network monitoring solutions include features of remote access. This permits admins to have access to the device in troubleshooting from anywhere without having to be in the office, physically.

Protecting and Restoring Data

Organisations that have data needs it to be safe therefore any problems with data is a concern for the business. Thus, the utilisation of a networking monitoring system will be ensuring the organisation and enterprise data does not become lost. NMS can provide easy accessibility in creating automatic, centralised backups to all of the systems. Even if they are in the different regions of the world, they still have access to it. Especially, it can track everything and alert your network administrator with any issues before they turn into a huge problem. NMS can assist you in determining the trouble stopped working, which can create a blockage. Configurations issues, human errors and environmental factors all contribute to it. For instances:

 When a business or an organisation has power outage, suddenly, all the computers

in it all turns off. Only, administrators need to start the NMS, then data recovery all computers have switched off. Already, the network monitoring system has a backup and synchronisation mode since the nearest time before the power outage has happened.

3. Improving detection and troubleshooting operations quicker

Another advantage of network monitoring system is that troubleshooting performance has increased, thus, increasing the save time and resources for troubleshooting

3. Evaluate a minimum of three of

physical and virtual security measures

that can be employed to ensure the

integrity of organisational IT security.

A trusted network is a network that network administrator has control over as they ensure there is no leakage of privacy and security data. This the network that the administrator attempts in protecting and determining the parameter for the same. Thus, it can be said within the network there are reliability in network. Traffic and incoming traffic is monitored as a firewall is setup in defining rules for two-way packet exchange on the firewall server. When performing the initial configuration for the wall, behind the firewalls are all the network which makes it a trusted network. For instance: When accessing the college’s open Wi-Fi, you will be prompted in specifying the network area you are connected to: public, home or work. Depending on the selection, security settings are enabled appropriately. Computers that utilising trusted networks tend to be secure due its strong firewalls. The firewalls by default will be blocking all external programs, it can be configured in permitting valid programs to pass. Often firewalls are utilised as IP control points and SBCs are utilised as VoIP control points. In the context of VoIP and IP networks, the location of security control devices determines the trusted areas.