Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Computer Networks

Is Your Network Infrastructure Bullet Proof

advertisement 
Is Your Network
Infrastructure Bullet
Proof?
October 17, 2006
My Background
• Been with Wake Tech and the ITS team for
nearly 11 years
• Previously in the Private Sector as an
Engineer
• Reliability/Failure Analysis Engineer
• Test Design Engineer
• Nearly 23 years of Experience in the
Computer Industry
• I Love the Pittsburgh Steelers
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
What Makes a Network
Bullet Proof?
• A Good Philosophy & Hard Work
• Hardware That Operates at Wire Speed
• Knowledgeable Personnel Always Looking
for Better Ways to Conduct Business
• Continual Monitoring of the Network
• A Simple Security Policy
• Senior Management That Supports It
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Information Technology Services
Mission
• The mission of Information Technology
Services at Wake Technical Community
College is to support Student Learning,
Faculty Teaching and College
Operations through the use of
Information Technology
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Information Technology Services
Philosophy
• The most important relationship on
campus is that between the Student
and the Instructor. Everything else on
campus is in support of that
relationship.
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Wake Tech’s Network Hardware
•
•
•
•
•
•
Top Layer 5500 for IPS Protection
FATPipe for Continuity of ISP Circuits
Cisco ASA 5540 for Main PIX Plus VPN
Multiple Cisco PIX Engines Throughout the Network
Cisco Routers for WAN and ME Circuits
HP ProCurve Family of Switches for Core Routing
Switch, Intermediate Routing Switches, and Edge
Switches
• Currently Replacing HP ProCurve Switches with New HP
ProCurve PoE switches in Preparation of VoIP
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Wake Tech’s Core Network
MCNC
TWC
Top Layer
2 Circuit
Connections
FAT Pipe
ASA 5540
HP 9315
Routing Switch
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
MCNC
TWC
Top Layer
Top Layer 5500 Intrusion
Prevention System Device
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Front Panel View
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Complete Security Report
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Real-Time Blocked & Detected
Attacks
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Real-Time Graph of Traffic
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Host Group Screen Allows Custom
Policy Definitions
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Rate Based Policy Controls Data
Flood Traffic
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Report Table By Service
Check Out Yahoo IM
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Top Layer is Delivered with PreDefined Rules
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Drilling Down on Rules Shows
Individual Network Violations
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Traffic Blocked from ONE Server
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Security Event Filter
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
MCNC
TWC
Top Layer
2 Circuit
Connections
FAT Pipe
FATPipe WARP Balancer
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Monitor the Health of Incoming
ISP Links
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Policy Routing Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Add or Edit Policy Rules
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
DNS Configuration Page
FATPipe has to be the DNS server
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Reverse Mapping Settings Allow Inbound
Traffic from Multiple ISP’s to a Single Server
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Internal Static Routes for Public & Private
Numbers NEED Defined or the FATPipe Will
Attempt to Route Numbers Externally
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Diagnostics Page Helps
Troubleshoot Problems
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Cisco ASA 5540
MCNC
TWC
Top Layer
2 Circuit
Connections
FAT Pipe
2
Connections
ASA 5540
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Cisco ASA 5540 Initial Screen Displays Valuable
Information: Link Status, Bandwidth Usage, Error
Messages, and CPU & Memory Usage
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
GUI Configuration Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
NAT/PAT Policy
Configuration Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
VPN Services Configuration Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Static Routes MUST Be Setup for
Internal Addresses
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
All Users, Groups, & Access Levels are
Setup by the
Device Administration Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Easy Definition of TFTP Server to
Load/Store Configurations
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Device Specific Configurations are Done on
the Properties Configuration Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
VPN Setup Wizard Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Monitor All Device Activity on a
Single Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Monitor the Device with Real-Time
Graphs
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
IP Audit Rules Page. This Feature is
Disabled Because of the Top Layer IPS
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
For CLI Users: SSH or the Command Line
Tool in the ASDM GUI are Available
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
HP ProCurve 9315 Routing Switch
MCNC
TWC
Top Layer
2 Circuit
Connections
FAT Pipe
2
Connections
ASA 5540
Manage Entire
LAN with PCM+
HP 9315
Routing Switch
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
HP PCM+ Firmware Update Wizard
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
HP ProCurve Devices Page
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
IP Route Table
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Other Discussion Topics That Need
Network Security
• Desktop Security – Anti-Virus Solutions
• Email Security – Anti-Virus & Anti-Spam
Solutions
• Wireless Access for Students – “Sandbox”
Solution
• Non-College Computers on Your Network
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Wake Tech’s ITS Crew
Dr. Darryl McGraw – Chief Information Officer
Leigh Anne Dupree – Director, IT & Help Desk Support
Chris Keefer – Director, Systems
Chris Wheeler – Director, Network Services
Tim Nicholson – Manager, Administrative Computing
Dale Weaver – Manager, Web Services
Fred Zahn – Manager, Network Services
Carlos McCormick – Manager, Instructional Technologies
Alec Woodruff – IT Systems Engineer
Buddy Gilmore – IT Voice Engineer
Jason Pickard – Senior Systems Analyst
Thomas Guettler – Senior IT Analyst
Ernest Youngblood – Help Desk Analyst
Cary Osborne – IT Analyst
Frank Spikes – IT Analyst
Dave Goldstein – IT Technician
Jeremy Blalock – IT Technician
Liz Winfrey – Web Designer Specialist
Susan Fenn – Programmer/Analyst
Amy Murray – Application Support Technician
Crystal Eatman – Administrative Assistant
Kyle Fescoe – Help Desk Assistant
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Question Period
Answers are Optional
Opinions are always Given
Visit Wake Tech:www.waketech.edu
Visit our ITS: its.waketech.edu
My Email:
cpwheeler@waketech.edu
WAKE TECH
INFORMATION TECHNOLOGY SERVICES
Related documents
Logistics - Motheread, Inc.
Logistics - Motheread, Inc.
Step_Three_Powerpoint
Step_Three_Powerpoint
The Four Functions of the Computer
The Four Functions of the Computer
Dr Caroline Wiertz is a Reader in Marketing at Cass Business
Dr Caroline Wiertz is a Reader in Marketing at Cass Business
Wake Technical Community College, NC
Wake Technical Community College, NC
Wake Tech Health Sciences Campus October 12
Wake Tech Health Sciences Campus October 12
Download
advertisement