Product Description
This book covers what an administrator needs to plan out and integrate a DMZ into a network for small, medium and Enterprise networks. In most enterprises the perception is that a firewall provides a hardened perimeter. However, the security of internal networks and hosts is usually very soft. In such an environment, a non-DMZ system that is offering services to the Internet creates the opportunity to leapfrog to other hosts in the soft interior of your network. In this scenario your internal network is fair game for any attacker who manages to penetrate your so-called hard perimeter.
- There are currently no books written specifically on DMZs
- This book will be unique in that it will be the only book that teaches readers how to build a DMZ using all of these products: ISA Server, Check Point NG, Cisco Routers, Sun Servers, and Nokia Security Appliances.
- Dr. Thomas W. Shinder is the author of the best-selling book on Microsoft's ISA, Configuring ISA Server 2000. Customers of the first book will certainly buy this book.
Download Description
Building REALLY BIG DMZs for Enterprise Networks covers a sorely needed area in critical business infrastructure… the Demilitarized Zone. DMZs play a crucial role in any network consisting of a Hosted Internet Web Server, internal servers which need to be segregated, External to Internal DNS Server, and an E-mail SMTP Relay Agent. The primary role of a DMZ is to mitigate risks associated with offering services to untrusted clients. A DMZ accomplishes this by providing network-level protection for a hosting environment, as well as segregating public hosting facilities from the private network infrastructure. This small but very important segment of the network is the section exposed to the public Internet and is the most difficult area on the network to create, and maintain both from an Engineering standpoint and a security standpoint. In this book (the only one of its kind) readers will learn how to make DMZ’s utilizing the IT world’s best of breed software and hardware products from Microsoft, Sun, Cisco, Nokia, and Check Point. DMZs are comprised of the following best of breed security products: Routers: 95% Cisco 5% Other Firewalls: 55% Check Point - 40% Cisco PIX - 5% Other Proxy Servers: 90% MS (Proxy/ISA) - 10% Other Web/FTP Servers: 65% SUN - 25% MS (IIS), 10% other (Linux) DNS Servers: 85% SUN - 5% MS - 10% other (Linux) Mail Relays: 40% MS, 25% Novell, 30% Unix, 5% Other VPNS: 60% Nortel Contivity, 25% Cisco Altiga, 15% MS VPN's This book covers what an administrator needs to plan out and integrate a DMZ into a network for small, medium and Enterprise networks. In most enterprises the perception is that a firewall provides a hardened perimeter. However, the security of internal networks and hosts is usually very soft. In such an environment, a non-DMZ system that is offering services to the Internet creates the opportunity to leapfrog to other hosts in the soft interior of your network. In this scenario your internal network is fair game for any attacker who manages to penetrate your so-called hard perimeter.
--This text refers to the
Digital
edition.
See all Editorial Reviews
(9)
$53.96
(6)
$39.99
(1)
$47.00
(9)
$59.95
