|
 |
|
 |
 |
Inside Network Perimeter Security (2nd Edition) (Inside)
|
by Stephen Northcutt, Lenny Zeltser, Scott Winters, and Karen Kent
Sales Rank: 306577
|
Discount: 37 %
List Price: $49.99
$34.99
At Amazon
|
|
Paperback: 768 pages
Publisher: Sams; 2 edition March 14, 2005
Language: English
ISBN-10: 0672327376
ISBN-13: 978-0672327377
Product Dimensions:
8.9 x 6.9 x 1.8 inches
Shipping Weight: 2.6 pounds
http://www.info-secure.org website.
Dan Goldberg recently created MADJiC Consulting, Inc., to provide network design and architecture reviews, intrusion detection and response, and vulnerability assessments in Central Virginia. He also works on research and writing projects for the SANS Institute and as technical director for Global Information Assurance Certification (GIAC). When not occupied by these activities, you may find him riding a mountain bike in the Blue Ridge Mountains.
John Spangler is a freelance Network Systems Engineer. Having over 10 years of experience, he has worked on everything from small office systems to large enterprise and ISP networks. John has worked as a technical editor for Cisco certification manuals.
Customer Reviews & Comments
This review is for the 2nd edition of this book. "Inside Network Perimeter Security" (INPS) by Northcutt, Zeltser, Winters, Kent, and Ritchey suitably covers the broad topic of securing a network's edge. The book is based, on part, from various SANS Institute training material (Northcutt is the CEO of the SANS Institute). Most of the items documented in INPS are honed from years of discussions in classes (and is mentioned an `excellent supplementary resource" for the GIAC Certified Firewall Analyst (GCFW)). The book first focuses on perimeter fundamentals - including dedicating about 100 pages to the three main types of firewalls (Packet, Stateful & Proxy). The second section discusses how to fortify other areas of the perimeter - by implementing hardened routers and hosts, VPNs, IDSs, and IPS. The third section discusses designing a secure perimeter from the ground up (consider it best practices). This includes a much-needed chapter on wireless security. The last section is how to monitor and maintain the perimeter. It is hard to characterize who this book should be aimed at. While configurations examples are given for many different platforms and OSs, the configs cannot be considered complete. I feel this book would serve network admins well as a starting point and as introduction to concepts that they might not be familiar with. Some items I like from Inside Network Perimeter Security: -Chapter 6 gives a great discussion on Cisco routers. What really impresses me is, since the documentation is from someone besides CiscoPress, you get an idea of other ways to harden Cisco routers (see the telnet trick on page 142). The first appendix also gives a great collection of different ACLs (consider it an update of the NSA's list). I have over 50 CiscoPress books, and information found in these 2 chapters I have not seen documented in any CiscoPress book. -Chapter 21 provides a `quick' list of tools to use to help troubleshoot and isolate an issue. While there are some great books that are wholly dedicated to showing the ins-and-outs of different tools, sometimes you can't see the trees through the forest. Within just a few short pages, INPS is able to suggest a plethora of different tools to use based upon the issue. The book mentions that it's goal "...is to create a practical guide for designing, deploying, and maintaining a real-world network security perimeter." I believe they have done just that! I give this book 5 pings out of 5: !!!!!
Comment | Permalink |
(Report this)
|
Inside Network Perimeter Security (2nd Edition) (Inside)
List Price: $49.99
Discount: 37 %
Available from Amazon
Price: $34.99
| |
|
|
|
|
