|
 |
|
 |
 |
Building DMZs for Enterprise Networks
|
by Robert J. Shimonski, Will Schmied, v Chang, and Thomas W. Shinder
Sales Rank: 665568
|
$11.37
At Amazon
|
|
Paperback: 768 pages
Publisher: Syngress; 1 edition May 2003
Language: English
ISBN-10: 1931836884
ISBN-13: 978-1931836883
Product Dimensions:
9.1 x 7.4 x 1.7 inches
Shipping Weight: 2.9 pounds
Book Description
This book covers what an administrator needs to plan out and integrate a DMZ into a network for small, medium and Enterprise networks. In most enterprises the perception is that a firewall provides a hardened perimeter. However, the security of internal networks and hosts is usually very soft. In such an environment, a non-DMZ system that is offering services to the Internet creates the opportunity to leapfrog to other hosts in the soft interior of your network. In this scenario your internal network is fair game for any attacker who manages to penetrate your so-called hard perimeter.
- There are currently no books written specifically on DMZs
- This book will be unique in that it will be the only book that teaches readers how to build a DMZ using all of these products: ISA Server, Check Point NG, Cisco Routers, Sun Servers, and Nokia Security Appliances.
- Dr. Thomas W. Shinder is the author of the best-selling book on Microsoft's ISA, Configuring ISA Server 2000. Customers of the first book will certainly buy this book.
Download Description
Building REALLY BIG DMZs for Enterprise Networks covers a sorely needed area in critical business infrastructure… the Demilitarized Zone. DMZs play a crucial role in any network consisting of a Hosted Internet Web Server, internal servers which need to be segregated, External to Internal DNS Server, and an E-mail SMTP Relay Agent. The primary role of a DMZ is to mitigate risks associated with offering services to untrusted clients. A DMZ accomplishes this by providing network-level protection for a hosting environment, as well as segregating public hosting facilities from the private network infrastructure. This small but very important segment of the network is the section exposed to the public Internet and is the most difficult area on the network to create, and maintain both from an Engineering standpoint and a security standpoint. In this book (the only one of its kind) readers will learn how to make DMZs utilizing the IT worlds best of breed software and hardware products from Microsoft, Sun, Cisco, Nokia, and Check Point. DMZs are comprised of the following best of breed security products: Routers: 95% Cisco 5% Other Firewalls: 55% Check Point - 40% Cisco PIX - 5% Other Proxy Servers: 90% MS (Proxy/ISA) - 10% Other Web/FTP Servers: 65% SUN - 25% MS (IIS), 10% other (Linux) DNS Servers: 85% SUN - 5% MS - 10% other (Linux) Mail Relays: 40% MS, 25% Novell, 30% Unix, 5% Other VPNS: 60% Nortel Contivity, 25% Cisco Altiga, 15% MS VPN's This book covers what an administrator needs to plan out and integrate a DMZ into a network for small, medium and Enterprise networks. In most enterprises the perception is that a firewall provides a hardened perimeter. However, the security of internal networks and hosts is usually very soft. In such an environment, a non-DMZ system that is offering services to the Internet creates the opportunity to leapfrog to other hosts in the soft interior of your network. In this scenario your internal network is fair game for any attacker who manages to penetrate your so-called hard perimeter.
--This text refers to the
Digital
edition.
Customer Reviews & Comments
The author writes on the level of a 6th grader. Here's an example sentance, "Although Windows 2000 is a secure OS, it is only as secure as you can make it". Which literally means "It is already as secure as you can make it". Anyhow, you probably don't know what I'm talking about. But almost every paragraph has a mistake like this in it. Sometimes it's anoying, and sometimes its confusing. There's pretty good info in this book, I just wish it was layed out more logically. Just like with the grammar, the author seems to skip around a lot and doesn't clarify things enough. I think there's a lot of good information, and I've learned alot, but it could be much much better.
Comment | Permalink |
(Report this)
|
Building DMZs for Enterprise Networks
Available from Amazon
Price: $11.37
| |
|
|
|
|
