With my new company there has been talk about having me do some work with firewalls... My knowledge on firewalls is run a script I found to set them up... Or just block everything and modify as needed.
I would really like to actually learn about them, how to set the up, best practices, things to watch out for, etc. etc.
Does anyone have any suggestions on some reading materials (web or book based)...
Thanks, John L.
Well, it is always good to begin with the free stuff...
http://www.interhack.net/pubs/fwfaq/
"This collection of Frequently Asked Questions (FAQs) and answers has been compiled over a period of years, seeing which questions people ask about firewalls in such fora as Usenet, mailing lists, and Web sites. If you have a question, looking here to see whether it's answered before posting your question is good form. Don't send your questions about firewalls to the FAQ maintainers."
http://www.howstuffworks.com/firewall.htm
"If you have been using the Internet for any length of time, and especially if you work at a larger company and browse the Web while you are at work, you have probably heard the term firewall used. For example, you often hear people in companies say things like, 'I can't use that site because they won't let it through the firewall.'"
http://www.cerias.purdue.edu/about/history/coast_resources/firewalls/
"This site provides the comprehensive list of resources associated with Internet firewalls. The list is divided into sections to make finding information easier. Much of the information presented here is also available at the COAST Archive."
http://www.cert.org/security-improvement/modules/m08.html
"A firewall is a combination of hardware and software used to implement a security policy governing the network traffic between two or more networks, some of which may be under your administrative control (e.g., your organization’s networks) and some of which may be out of your control (e.g., the Internet). A network firewall commonly serves as a primary line of defense against external threats to your organization's computer systems, networks, and critical information. Firewalls can also be used to partition your organization’s internal networks, reducing your risk from insider attacks."
Some books to consider:
http://dannyreviews.com/h/Firewalls_and_Internet_Security.html
"The first edition of Firewalls and Internet Security (1994) was one of the very first books on firewalls to appear and became a classic, remaining in print for nearly a decade. Though rewritten almost completely, this second edition retains much of the flavour and focus of the first, which is both a strength and a weakness. It is idiosyncratic and somewhat scattered, trying to cover everything while still providing unique material. But where it is good it is very good, with the authors' wealth of experience showing in the "broad picture" integration of security into the real world. And it is just plain fun to read! There are now many other books on firewalls to compete with, but Firewalls and Internet Security still stands out from the crowd."
http://www.amazon.com/exec/obidos/ASIN/1565928717/sfikenterprises/102-8394350-3514556
Building Internet Firewalls (2nd Edition)
by Elizabeth D. Zwicky, Simon Cooper, D. Brent Chapman
"In the vast and varied universe of computer books, only a few stand out as the best in their subject areas. Building Internet Firewalls is one of those. It's deep, yet carefully focused, so that almost anything you might want to know about firewall strategies for protecting networks is here."
http://www.oreilly.com/catalog/1931836906/index.html
The Best Damn Firewall Book Period
By Dr. Thomas W. Shinder, Doug Maxwell, Cherie Amon
Publisher: Syngress
October 2003
ISBN: 1931836906
1293 pages, $59.95 US, $79.95 CA
"Essential reading for anyone wanting to protect Internet-connected computers from unauthorized access. Coverage includes TCP/IP, setting up firewalls, testing and maintaining firewalls, and much more. All of the major important firewall products are covered including Microsoft Internet Security and Acceleration Server (ISA), ISS BlackICE, Symantec Firewall, Check Point NG, and PIX Firewall. Firewall configuration strategies and techniques are covered in depth."
That should drown you in information overload for a while... 8-)
Good Luck!
Rick [EMAIL PROTECTED]
--
KPLUG-List mailing list KPLUG-List@kernel-panic.org http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
