Please enable JavaScript.
Coggle requires JavaScript to display documents.
Chapter 7 Network Security Fundamentals, types of network security -…
Chapter 7
Network Security Fundamentals
types of network security
Virtual private network (VPN) - Uses unsecured network as if were secure
Host-based application software firewall runs as program on one client
Web security gateway - Can block malicious content in real time
Host-based application software firewall runs as program on one client
Spam filters - Enterprise-wide spam filters block spam before it reaches the host
Internet content filters - Monitor Internet traffic and block access to preselected Web sites and files
Network intrusion detection system (NIDS) - Watches for attacks on network.
how network technologies can enhance security
Network access control (NAC) - Examines current state of system or network device before allowing network connection
Network address translation (NAT) - Allows private IP addresses to be used on public Internet
Two technologies:
Network address translation
Network access control
Security Through Network Design Elements
Demilitarized zone (DMZ) - Separate network located outside secure network perimeter
Virtual LAN (VLAN) - Segment network by separating devices into logical groups
Remote access - Any combination of hardware and software that enables remote users to access local internal network
Subnetting or subnet addressing - IP address split anywhere within its 32 bits
types of network security
Hubs – Used by early LANs to connect multiple Ethernet devices together to function as single network segment
Router – Network device that forward packets across computer networks
Switch – Device that connects network devices
Operate at Data Link Layer (Layer 2)