Advertisement
Promo

Network management Toolkit in association with http://ad.doubleclick.net/clk;217618582;14453422;e?http://www.citrix.com/lang/English/lp/lp_1688615.asp

Multilayer firewall strategy

Mitch Bryant

Published: 14 Feb 2003 21:07 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

While firewalls can secure Internet access, protect mission-critical information, and leverage the Internet to connect a global enterprise, they're just the starting point for building a security fortress. Some organisations may believe they're secure with current firewalls in place, but it won't be long before they realise they need more tools for securing their next connectivity initiative, such as a VPN.

Whether you want to improve, replace, or initially install a firewall, it's a good time to refresh your knowledge of firewalls and understand the vital steps, such as developing a security policy, that you must take before making any more security moves.

False firewall beliefs
A common misconception is that one firewall can protect every asset. While that might have been true a few years ago, it's not enough protection, given the advancements in hacking and increasing external threats.

According to the CERT Coordination Center at the Software Engineering Institute (CERT/CC), the number of reported network security incidents has almost tripled in the past two years -- from 21,756 in 2000 to 73,359 at the end of Q3 2002.

A second misconception is that a firewall device is a "connect, turn on, and forget about it" device. It's actually a technology that requires constant review, fine-tuning, and evaluation.

In addition, many organisations plug firewalls into place without a security policy. Firewall deployment should be tied directly to security policies that address and support your company's objectives. Enterprises must consider a multilayered security approach, with a security policy, firewalls, and additional security tools (such as virus software).

What a firewall can and can't do
A firewall can be hardware- or software-based. The tightest security is obtained when the two options are used in combination. Yet, even in this approach, a firewall system has its limits:

  • It can't protect the enterprise from attacks and threats from within your network.
  • Virus protection is limited without additional software and specialised technologies.
  • A firewall can't protect an organisation from attacks that avoid a firewall -- an external hack via a dial-up account can fully compromise the entire security plan.

Firewall technology, obviously, also can't protect organisations from employee carelessness or mistakes with passwords and unauthorised access. Only specific tools and policy guidelines on expected computer use and access can thwart those issues.

Next

Previous

1 2


  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
98 out of 221 people found this useful


Full Talkback thread

0 comments

Company/Topic Alerts

Create a new alert from the list below:














Related Citrix Resources

Achieving the lowest server virtualization TCO

Consolidation through server virtualization is a powerful agent for datacenter change, but...

Achieving the lowest server virtualization Total Cost of Ownership

Consolidation through server virtualization is a powerful agent for datacenter change, but...

Citrix XenDesktop: The Best Desktop Delivery System For Today's Demanding Business Needs

Whether you're considering your first virtual desktop solution or trying to salvage an existing...

Desktop Virtualization: A buyer's checklist

Desktop virtualization should do more than just move desktop management to the datacenter—its real...

Five reasons why you need Citrix Essentials for Hyper-V now

This paper explores common challenges associated with server virtualization deployments and the...

See All White Papers

Video icon

Video

On The Road Blog

Nokia halves smartphone portfolio

Nokia has reduced the number of smartphone models it intends to introduce in 2010 by half, according to reports. Quoted in an article on Reuters, the Finnish handset maker's new... More

1 comment

Can I have fries with that? (Consumer...

Licence policies of Tech company's have been for a long time both complicated and 'Dick Turpin-esque', people just click 'I agree' without reading the Agreement. I do the same, but... More

1 comment

Lenovo repurchases mobile phone arm

Lenovo has bought back the mobile phone arm that it sold to a private equity firm at the start of 2008, the company said on Friday. The manufacturer sold Lenovo Mobile to the Hony... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

Newsletters