Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

CheckPoint R80.30 Installation on OpenNebula

25 views

Published on

An Interactive Network walk-thru of how to install CheckPoint R80.30 on OpenNebula

Published in: Software
  • Be the first to comment

  • Be the first to like this

CheckPoint R80.30 Installation on OpenNebula

  1. 1. Checkpoint R80.30 Installation on John Fitzgerald (john.fitzgerald@internet.de) 1
  2. 2. Start der Installation John Fitzgerald (john.fitzgerald@internet.de) 2
  3. 3. Checkpoint Firewall Installation • Checkpoint in OpenNebula getestet: • Version 77.30 • Version 80.10 • Version 80.20 • Version 80.30 • „Hardware Parameter R80.30 (1-5 Gateways)“ • Mindestens: 8GB RAM, 4 CPU, 4 vCPU, 300 GB HDD, 1 NIC • m.p. Empfehlung: 16 GB RAM, 4 CPU, 4 vCPU, 500 GB HDD, 2NIC, 1+ Alias John Fitzgerald (john.fitzgerald@internet.de) 3
  4. 4. Firewall in virtueller Umgebung • Warum? • Ist das nicht unsicher? • Spectre… • Meltdown… • Seitennagriffe, Ausleseattacken • Ja, aber: wie schütze ich meinen virtuellen Webserver in Public Clouds? • Und: Nicht so unsicher in privater Cloud(!) John Fitzgerald (john.fitzgerald@internet.de) 4
  5. 5. Installation John Fitzgerald (john.fitzgerald@internet.de) 5
  6. 6. Vorteile einer guten Firewall • Granulare Einstellungen • NAT/PAT: IPs, Ports etc. • Verschleierung des OS • Nicht nur Paket Filtering, sondern Deep-Paket Inspection • Intrusion Prevention System (wichtig: Anzahl der Patterns) • VirenFilter • SpamFilter • VPN at ~ WireSpeed • IP Tunnel Concentrator • […] John Fitzgerald (john.fitzgerald@internet.de) 6
  7. 7. Geo-Protection John Fitzgerald (john.fitzgerald@internet.de) 7
  8. 8. IPS (Intrusion Prevention System) John Fitzgerald (john.fitzgerald@internet.de) 8
  9. 9. SMB vs. Enterprise Quadrant John Fitzgerald (john.fitzgerald@internet.de) 9
  10. 10. NMAP Scan Test John Fitzgerald (john.fitzgerald@internet.de) 10 Ohne Firewall: mit Checkpoint Firewall:
  11. 11. Fragen? John Fitzgerald (john.fitzgerald@internet.de) 11

×