The Must Do’s of Network Security and Configuration Management

A big “Howdy” from SolarWinds®
based in Austin, Texas
Josh Stephens- VP of Technology & Head Geek
David Hurst – Network Security Guru & CTO, Athena Security
Today’s Topic:
Network Security and Configuration Management Must Do’s
Who is SolarWinds?
What we do…
Who are our customers?
The SolarWinds community…
Introduction

Who is Athena Security?
What they do…
Who are their customers?
How do they relate to SolarWinds?
Introduction Cont’d…

Agenda
Introductions & Housekeeping
Configuration Management
Managing access lists and firewall rules
Compliance Reporting
Network Security within a Virtualized Infrastructure
Introduction to Athena FirePac
Summary and Q&A

Housekeeping
Can you hear me now?
If not, use the GoToWebinar Q&A panel to contact the moderator
How do you ask questions?
Will this thing be recorded?

Configuration Mgmt in a Nutshell
Managing configurations of:
Routers, firewalls, switches, IDSs and other network infrastructure devices.
Any CLI or menu driven device
Tasks such as:
Scheduled configuration backups
Automated bulk config changes
Real-time change detection and notification
Compliance needs for:
Policy management, verification, and remediation
Log collection, alerting, and storage
J0sher2014

Key areas of focus for Config Mgmt
Access Control:
ACL maintenance and audits
Firewall rule management
Compliance reporting
Auditing and validation of public policy compliance
Enforcement of private policies
Remediation of variances
Security in a virtualized environment
Security policy enforcement and deployment
Access control within virtual networks
J0sher2014

Configuration Management in Action
J0sher2014

Orion NCM + Athena FirePAC
Rule/Object Cleanup
Change Validation
Advanced Query
SolarWinds Orion NCM

CONFIGURATION BEST PRACTICES
Use default deny policy and reduce number of specific deny rules
Use rules that are as specific as possible, no “ANY” rules
Don’t multiply rules and objects unnecessarily
Be aware of the impact of NAT control
Use a stealth rule
Prevent external access to the firewall

Rule/Object Cleanup
Remove all structurally redundant rules
Monitor usage over time to identify unused rules
Determine object usage per-rule and globally per object
Document business reason for the rules

Advanced Query
What services are allowed to critical hosts
What sources can reach critical hosts
Does the firewall already implement a given policy
Identify what rules/objects to modify to implement a change request
What rules (ACL, NAT, route) implement a given policy

Summary and Q&A
Thank you for attending!
To learn more or to download free 30-day trials of
SolarWinds products visit: www.SolarWinds.com
For Athena products visit www.athenasecurity.com
Contact information
SolarWindsAthena Security
Josh Stephens, Head Geek David Hurst, CTO
headgeek@solarwinds.com dhurst@athenasecurity.net
twitter: sw_headgeekwww.athenasecurity.net
Blog: http://solarwinds.com/geek Blog: http://blog.athenasecurity.net

The Must Do’s of Network Security and Configuration Management

by SolarWinds on May 20, 2010

Accessibility

Categories

Tags

Upload Details

Usage Rights

2 Embeds 25

Statistics

The Must Do’s of Network Security and Configuration Management — Presentation Transcript

http://www.slideshare.net	24
http://static.slidesharecdn.com	1