Lecture Basic network management - Chapter 15: Firewall concepts. After studying this chapter you will be able to understand: What is firewall? Functions of Firewall What is IDS? Functions of IDS | Chapter 15: Firewall Concepts -Chương này cung cấp cho học viên khái niệm về các thiết bị firewall,chức năng của các thiết bị firewall này. -Thiết bị IDS/IDP Objective What is firewall? Functions of Firewall What is IDS ? Functions of IDS Function of Firewall Protecting data and network resources is critical to successful e-business. Firewalls are mandatory network security devices. When connecting to the Internet, you need a firewall in every location with Internet access. Firewalls provide: Access Control Authentication VPN Network Segmentation DoS protection and some network layer attack detection Recording Syslog Internet Switch Syslog Server Router Switch RAS dmz Location of Firewall Firewall inside outside CISCO PIX FIREWALL 1 – Pix Firewall 501 2 – Pix Firewall 506E 3 – Pix Firewall 515E 4 – Pix Firewall 525 5 – Pix Firewall 535 Some Firewall Types INTRUSION DETECTION & PREVENTION SYSTEM OVERVIEW 1 – Function 2 – Location of IDP Function Functions Intrusion Detection & Prevention (IDP) system is designed as dedicated devices for comprehensive intrusion detection, dropping and prevention: Detects and Prevents intrusions Prevents attacks before it is too late Multiple response mechanisms Allow the user to decide how to respond to individual attacks Web Server User Users Finance Servers Firewall CodeRed Mail Server HR Servers Location of IDP Protected network Internet IDP Victim Mail Server Attacker LAN Switch SPAN LAN Firewall Summary Firewall . | Chapter 15: Firewall Concepts -Chương này cung cấp cho học viên khái niệm về các thiết bị firewall,chức năng của các thiết bị firewall này. -Thiết bị IDS/IDP Objective What is firewall? Functions of Firewall What is IDS ? Functions of IDS Function of Firewall Protecting data and network resources is critical to successful e-business. Firewalls are mandatory network security devices. When connecting to the Internet, you need a firewall in every location with Internet access. Firewalls provide: Access Control Authentication VPN Network Segmentation DoS protection and some network layer attack detection Recording Syslog Internet Switch Syslog Server Router Switch RAS dmz Location of Firewall Firewall inside outside CISCO PIX FIREWALL 1 – Pix Firewall 501 2 – Pix Firewall 506E 3 – Pix Firewall 515E 4 – Pix Firewall 525 5 – Pix Firewall 535 Some Firewall Types INTRUSION DETECTION & PREVENTION SYSTEM OVERVIEW 1 – Function 2 – Location of IDP Function Functions Intrusion Detection & Prevention (IDP) system is designed as dedicated devices for comprehensive intrusion detection, dropping and prevention: Detects and Prevents intrusions Prevents attacks before it is too late Multiple response mechanisms Allow the user to decide how to respond to individual attacks Web Server User Users Finance Servers Firewall CodeRed Mail Server HR Servers Location of IDP Protected network Internet IDP Victim Mail Server Attacker LAN Switch SPAN LAN Firewall Summary Firewall IDS/IDP