Secure Network Components
Intranet is a private network designed to host the same information as the
Internet
Extranet is a cross between the Inter and Intra - rarely public - used as a
DMZ
Networks are not typically configured as a single large collection of systems -
usually segmented into small units to improve:
Boosting performance - systems that often communicate with others
are in the same segment
Reducing communication problems - segmentation can reduce
communication problems and broadcast storms
Providing security - improve security
Can be separated using switch based VLAN, routers, firewalls, etc.
NAC Network Access Control - concept of controlling access through strict
adherence to policy
Firewalls - essential tools in managing and controlling network traffic - device
used to filter or block traffic - can block bad code - log events
Static Packet-Filtering
o Filters traffic by examining data from the message header -
source destination, port address
o Doesn't provide user authentication or know where the packet
came from
Application-Level Gateway
o A proxy - copies packets from one network into another -
changes source/destination to protect the identity
o Filters traffic based on Internet Service used to transmit or
receive the data - impacts network performance because each
packet must be examined and processes - think DMV
Circuit Level Gateway
o used to establish communications between trusted partners -
Layer 5
Intranet is a private network designed to host the same information as the
Internet
Extranet is a cross between the Inter and Intra - rarely public - used as a
DMZ
Networks are not typically configured as a single large collection of systems -
usually segmented into small units to improve:
Boosting performance - systems that often communicate with others
are in the same segment
Reducing communication problems - segmentation can reduce
communication problems and broadcast storms
Providing security - improve security
Can be separated using switch based VLAN, routers, firewalls, etc.
NAC Network Access Control - concept of controlling access through strict
adherence to policy
Firewalls - essential tools in managing and controlling network traffic - device
used to filter or block traffic - can block bad code - log events
Static Packet-Filtering
o Filters traffic by examining data from the message header -
source destination, port address
o Doesn't provide user authentication or know where the packet
came from
Application-Level Gateway
o A proxy - copies packets from one network into another -
changes source/destination to protect the identity
o Filters traffic based on Internet Service used to transmit or
receive the data - impacts network performance because each
packet must be examined and processes - think DMV
Circuit Level Gateway
o used to establish communications between trusted partners -
Layer 5
