The document discusses strategies for securing networks, focusing on open source software options. It outlines three core areas that security consultants concentrate on: the perimeter or outer wall, mission-critical servers, and the internal user network. The first strategy discussed is protecting the perimeter with firewalls and network intrusion detection systems. Open source software provides many options for these security components and fulfilling firewall needs.

1. For stronger and stable networks
New Straits Times
April 15, 2004 | Siddharth Phadnis
Siddharth Phadnis
New Straits Times
04-15-2004
For stronger and stable networks
Byline: Siddharth Phadnis
Edition: Computimes; 2*
Section: Business Computing
THINKING about implementing and securing your network? Think open source and freedom.
In this day and age, when confidentiality, integrity and information assurance are the buzzwords,
information technology (IT) managers are right in thinking about evaluating all the factors in securing
their networks.
When security consultants consider implementing a security strategy, they usually concentrate on three
core areas of a network to be protected.
* The perimeter or the outer wall of the network;
* The mission-critical sub-network where critical servers are kept; and
* The internal network where users come into picture.
The first strategy is protecting the perimeter, focusing on the firewall and network intrusion detection
(NID) systems.
An intrusion prevention strategy involves three key components - firewalls, NID and host-based integrity
assessment tools. Many options are available in open source software for this part of the network.
Most of the firewall needs are fulfilled by Netfilter/IPtables. Almost all the firewall solutions that are
based on another famous open source software - GNU/Linux, are invariably based upon
Netfilter/IPtables.