1 / 48

Is Your Network Infrastructure Bullet Proof? October 17, 2006

Is Your Network Infrastructure Bullet Proof? October 17, 2006. Been with Wake Tech and the ITS team for nearly 11 years Previously in the Private Sector as an Engineer Reliability/Failure Analysis Engineer Test Design Engineer Nearly 23 years of Experience in the Computer Industry

cecile
Download Presentation

Is Your Network Infrastructure Bullet Proof? October 17, 2006

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Is Your Network Infrastructure Bullet Proof? October 17, 2006

  2. Been with Wake Tech and the ITS team for nearly 11 years Previously in the Private Sector as an Engineer Reliability/Failure Analysis Engineer Test Design Engineer Nearly 23 years of Experience in the Computer Industry I Love the Pittsburgh Steelers My Background

  3. A Good Philosophy & Hard Work Hardware That Operates at Wire Speed Knowledgeable Personnel Always Looking for Better Ways to Conduct Business Continual Monitoring of the Network A Simple Security Policy Senior Management That Supports It What Makes a NetworkBullet Proof?

  4. The mission of Information Technology Services at Wake Technical Community College is to support Student Learning, Faculty Teaching and College Operations through the use of Information Technology Information Technology Services Mission

  5. The most important relationship on campus is that between the Student and the Instructor. Everything else on campus is in support of that relationship. Information Technology Services Philosophy

  6. Top Layer 5500 for IPS Protection FATPipe for Continuity of ISP Circuits Cisco ASA 5540 for Main PIX Plus VPN Multiple Cisco PIX Engines Throughout the Network Cisco Routers for WAN and ME Circuits HP ProCurve Family of Switches for Core Routing Switch, Intermediate Routing Switches, and Edge Switches Currently Replacing HP ProCurve Switches with New HP ProCurve PoE switches in Preparation of VoIP Wake Tech’s Network Hardware

  7. Wake Tech’s Core Network MCNC TWC Top Layer 2 Circuit Connections FAT Pipe ASA 5540 HP 9315 Routing Switch

  8. Top Layer 5500 Intrusion Prevention System Device MCNC TWC Top Layer

  9. Front Panel View

  10. Complete Security Report

  11. Real-Time Blocked & Detected Attacks

  12. Real-Time Graph of Traffic

  13. Host Group Screen Allows Custom Policy Definitions

  14. Rate Based Policy Controls Data Flood Traffic

  15. Report Table By ServiceCheck Out Yahoo IM

  16. Top Layer is Delivered with Pre-Defined Rules

  17. Drilling Down on Rules Shows Individual Network Violations

  18. Traffic Blocked from ONE Server

  19. Security Event Filter

  20. FATPipe WARP Balancer MCNC TWC Top Layer 2 Circuit Connections FAT Pipe

  21. Monitor the Health of IncomingISP Links

  22. Policy Routing Page

  23. Add or Edit Policy Rules

  24. DNS Configuration PageFATPipe has to be the DNS server

  25. Reverse Mapping Settings Allow Inbound Traffic from Multiple ISP’s to a Single Server

  26. Internal Static Routes for Public & Private Numbers NEED Defined or the FATPipe Will Attempt to Route Numbers Externally

  27. Diagnostics Page Helps Troubleshoot Problems

  28. Cisco ASA 5540 MCNC TWC Top Layer 2 Circuit Connections FAT Pipe 2 Connections ASA 5540

  29. Cisco ASA 5540 Initial Screen Displays Valuable Information: Link Status, Bandwidth Usage, Error Messages, and CPU & Memory Usage

  30. GUI Configuration Page

  31. NAT/PAT PolicyConfiguration Page

  32. VPN Services Configuration Page

  33. Static Routes MUST Be Setup for Internal Addresses

  34. All Users, Groups, & Access Levels are Setup by the Device Administration Page

  35. Easy Definition of TFTP Server to Load/Store Configurations

  36. Device Specific Configurations are Done on the Properties Configuration Page

  37. VPN Setup Wizard Page

  38. Monitor All Device Activity on a Single Page

  39. Monitor the Device with Real-Time Graphs

  40. IP Audit Rules Page. This Feature is Disabled Because of the Top Layer IPS

  41. For CLI Users: SSH or the Command Line Tool in the ASDM GUI are Available

  42. HP ProCurve 9315 Routing Switch MCNC TWC Top Layer 2 Circuit Connections FAT Pipe 2 Connections ASA 5540 Manage Entire LAN with PCM+ HP 9315 Routing Switch

  43. HP PCM+ Firmware Update Wizard

  44. HP ProCurve Devices Page

  45. IP Route Table

  46. Desktop Security – Anti-Virus Solutions Email Security – Anti-Virus & Anti-Spam Solutions Wireless Access for Students – “Sandbox” Solution Non-College Computers on Your Network Other Discussion Topics That NeedNetwork Security

  47. Dr. Darryl McGraw – Chief Information Officer Leigh Anne Dupree – Director, IT & Help Desk Support Chris Keefer – Director, Systems Chris Wheeler – Director, Network Services Tim Nicholson – Manager, Administrative Computing Dale Weaver – Manager, Web Services Fred Zahn – Manager, Network Services Carlos McCormick – Manager, Instructional Technologies Alec Woodruff – IT Systems Engineer Buddy Gilmore – IT Voice Engineer Jason Pickard – Senior Systems Analyst Thomas Guettler – Senior IT Analyst Ernest Youngblood – Help Desk Analyst Cary Osborne – IT Analyst Frank Spikes – IT Analyst Dave Goldstein – IT Technician Jeremy Blalock – IT Technician Liz Winfrey – Web Designer Specialist Susan Fenn – Programmer/Analyst Amy Murray – Application Support Technician Crystal Eatman – Administrative Assistant Kyle Fescoe – Help Desk Assistant Wake Tech’s ITS Crew

  48. Visit Wake Tech:www.waketech.edu Visit our ITS: its.waketech.edu My Email: cpwheeler@waketech.edu Question PeriodAnswers are OptionalOpinions are always Given

More Related