• Console Server
• Physical Layer Switch
• Data Access Switch
• Remote Access
• Network Taps
• Fiber Optic Cables

• Delay Simulators
• Web Stressor
• Jammer
• BERT
• Generator
• Fiber Simulator

• SAN Analysis
• LAN Analysis
• LAN Expert
• WLAN Analysis
• Handheld Analysis
  

• Network Manager
• SAN Monitor
• SAN Probe
• SAN Views
• SAN Portal
• LAN Monitor

• Security Classes

Anti-Hacking for Firewalls, VPN's & Security Prevention Tools

Securing Your Perimeter with Firewalls, Gateways, VPN's and Intrusion Prevention Security

This three-day, hands-on seminar focuses on creating firewall implementations that protect your information resources. You will implement numerous commercial and freeware firewalls, examine best practices for protecting DNS services, HTTP, and SMTP. You will explore proven strategies for defending your networks against unauthorized access and denial-of-service attacks with the new leading edge prevention tools. You will examine the weaknesses of firewall architectures and how good security processes strengthen user- and host-based authentication, warning banners, address translation and masquerade, remote management, alerts, content filtering, spoofing, complex protocols and other advanced issues. Hands-on labs are designed for impact – providing you essential features of various firewall architectures including packet filters, stateful packet filting and proxy firewalls and how they work with VPN's. Session size is limited for maximum hands-on experience.

Course Fee: $1,995
Time: 8:30am - 4pm
Learning Level: Basic to advanced
CPE Credits: 24
Prerequisites: You should know TCP/IP. You should also be familiar with Windows NT or Unix

Request Class Dates or In-House Training of Classes.

What You Will Learn:

1. Review of Internet Attacks
Ґ hacker trends and motives
Ґ denial-of-service attacks: SYN floods, smurf, Trinoo and others
Ґ network probes and scans
Ґ IP spoofing
Ґ Trojan horses
Ґ application-level attacks

2. Characteristics of the Firewall Environment
Ґ objectives of firewalls
Ґ creating security domains
Ґ perimeter and internal firewalls
Ґ firewall rule sets
Ґ default deny vs.default allow
Ґ firewall platforms
Ґ common commercial firewalls
Ґ host-based firewalls
Ґ firewall appliances
Ґ firewall configurations
Ґ demilitarized zones (DMZs)
Ґ dual & multi-homed configurations
Ґ screened sub-networks
Ґ HA - high availability firewalls
Ґ positioning Network Services in the firewall environment
Ґ servers on the firewall
Ґ single server vs. multiple server
Ґ access policy for internal applications
Ґ firewall architectures: packet filters, proxy-based firewalls,
hybrid firewalls
Ґ issues not addressed by firewalls: poor passwords, data-driven attacks,
modems, internal attacks

3. Firewall Security Policies
Ґ risk assessment approach
Ґ identifying essential services
Ґ identifying key threats
Ґ vulnerability assessment
Ґ developing firewall rule sets
Ґ policies for inbound access and outbound access
Ґ Network Address Translation (NAT) and PortAddress Translation (PAT)
Ґ additional elements of the firewall security policy
Ґ denial-of-service filters
Ґ account management and authentication
Ґ remote management

4. Standard (Stateless) Packet Filters
Ґ packet filter design
Ґ identifying where packet filtering is performed
Ґ rules processing
Ґ ingress and egress filtering
Ґ packet filter control points & parameters
Ґ TCP flags & ICMP message types
Ґ permitting established connections
Ґ configuring packet filters to control access to HTTP, SMTP, DNS
Ґ advanced packet filter usage
Ґ addressing denial-of-service attacks: LAND, ping floods, SYN floods
Ґ dynamic access controls
Ґ authentication, authorization and accounting (AAA)
Ґ limitations of packet filters
Ґ handling difficult protocols: FTP, multimedia applications

5. Stateful Inspection Firewalls
Ґ stateful inspection firewall design
Ґ limitations of standard (stateless) packet filters
Ґ stateful inspection firewalls control points
Ґ weaknesses of stateful inspection technology
Ґ configuring the TCP/IP protocol stack
Ґ IP forwarding issues
Ґ application data
Ґ Web content: ActiveX controls, Java applets
Ґ maintaining stateful inspection
Ґ connection tables and performance
Ґ connections for UDP
Ґ network address translation techniques
Ґ application protocol handling
Ґ handling FTP and streaming protocols

6. Proxy-Based Firewalls
Ґ proxy firewall design
Ґ characteristics of proxy-based connections
Ґ differences between proxy firewalls and caching proxy servers
Ґ address hiding
Ґ circuit-level & application-layer proxies
Ґ strengths of proxy firewalls
Ґ configuring & hardening the TCP/IP protocol stack
Ґ IP forwarding issues
Ґ application proxy rules processing
Ґ application protocol and data handling
Ґ configuring application proxies to support SMTP, FTP, HTTP
Ґ configuring generic proxy servers
Ґ one-to-one/ any-to-one

7. Proxy Servers for Internal to External Access
Ґ types of proxy servers
Ґ Winsock proxy servers
Ґ SOCKS proxy servers
Ґ Web proxy servers
Ґ configuring clients for proxy servers,
Ґ client applications,
Ґ client operating systems,
Ґ port redirectors on proxy server gateways

8. Personal Firewalls
Ґ Do you need personal firewalls?
Ґ For the mobile user
Ґ For home office users
Ґ Trojan horse problems
Ґ How to manage the personal firewall
Ґ Standard templates vs advanced configuration
Ґ User managed vs. centralized management
Ґ List of current personal firewalls

9. VPN's
Ґ The need for VPN's
Ґ How to configure
Ґ How to integrate with firewalls
Ґ What VPN's to use with which firewalls
Ґ Securing network connections using VPNs

10. Content Filtering and Prevention Tools
Ґ Deploying content filters
Ґ SMTP filters
Ґ Anti-virus
Ґ Blocking Trojans and Worms at the SMTP server
Ґ Spam filtering
Ґ Anti-relaying
Ґ Web site filtering blockers
Ґ Recommended policies and actions
Ґ Filtering mobile code: ActiveX, Java, JavaScript
Ґ Intrusion prevention tools
Ґ Integrating firewalls & Prevention Tools
Ґ Firewall penetration-testing tools

11. Firewall Management
Ґ Assessing the firewall vendor
Ґ Independent certification of firewall products
Ґ Installation, training
Ґ Assigning resources for firewall management
Ґ Firewall administrator responsibilities
Ґ Creating a secure platform for the firewall
Ґ Creating a bastion host
Ґ Creating system baselines
Ґ Monitoring the firewall
Ґ Managing firewall alerts
Ґ Best practices for incident handling
Ґ Log file management
Ґ keeping up to date: key e-mail lists and Web sites
*Course fees are subject to change

Request Class Dates or In-House Training of Classes.