Firewall Feud Lunch & Learn

CTOvision

FireMon is surveying security pros across the country about their biggest challenges with firewall policy management. Join FireMon in a city near you as their experts reveal the top answers and share firewall management best practices for tackling them head on! Related articles. Why Running Multiple WordPress Firewalls is a Bad Idea (wpwhitesecurity.com). Technology › Apple hack exposes flaws in building apps behind 'Great Firewall' (japantoday.com).

WEBINAR: The Impact of Firewall Sprawl

CTOvision

Register >> Network firewalls have long been established as the ubiquitous first line of defense for every organization’s network security strategy. Sprawling deployments of firewalls and other security devices that increase complexity, cost and risk. Join representatives from research firm, the Aberdeen Group , as they share their insights on the rise of firewall sprawl and learn how the FireMon platform answers the call for more strategic firewall management.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

What is a firewall?

Network World

Network-based firewalls have become almost ubiquitous across US enterprises for their proven defense against an ever-increasing array of threats. A recent study by network testing firm NSS Labs found that up to 80% of US large businesses run a next-generation firewall. Research firm IDC estimates the firewall and related unified threat management market was a $7.6 What is a firewall? To read this article in full or to leave a comment, please click here

How to shop for enterprise firewalls

Network World

Firewalls have been around for years, but the technology keeps evolving as the threat landscape changes. Here are some tips about what to look for in a next-generation firewall ( NGFW ) that will satisfy business needs today and into the future. Don't trust firewall performance stats. Most firewalls will perform well when traffic loads are light. It’s important to see how a firewall responds at scale, particularly when encryption is turned on.

Cisco security warnings include firewall holes, Nexus software weaknesses

Network World

Cisco has issued another batch of security warnings that include problems in its Firepower firewall (FXOS), Unified Computing System (UCS) software and Nexus switch operating system (NX-OS).

Machine learning in Palo Alto firewalls adds new protection for IoT, containers

Network World

Palo Alto Networks has released next-generation firewall (NGFW) software that integrates machine learning to help protect enterprise traffic to and from hybrid clouds , IoT devices and the growing numbers of remote workers. To read this article in full, please click here

Cisco issues firewall, SD-WAN security warnings

Network World

Amongst Cisco’s dump of 27 security advisories today only one was rated as critical – a vulnerability in its Firepower firewall system that could let an attacker bypass authentication and execute arbitrary actions with administrative privileges on a particular device. To read this article in full, please click here

VMware firewall takes aim at defending apps in data center, cloud

Network World

VMware has taken the wraps off a firewall it says protects enterprise applications and data inside data centers or clouds. Unlike perimeter firewalls that filter traffic from an unlimited number of unknown hosts, VMware says its new Service-defined Firewall gains deep visibility into the hosts and services that generate network traffic by tapping into into its NSX network management software, vSphere hypervisors and AppDefense threat-detection system.

5 firewall features IT pros should know about but probably don’t

Network World

Firewalls continuously evolve to remain a staple of network security by incorporating functionality of standalone devices, embracing network-architecture changes, and integrating outside data sources to add intelligence to the decisions they make – a daunting wealth of possibilities that is difficult to keep track of. Because of this richness of features, next-generation firewalls are difficult to master fully, and important capabilities sometimes can be, and in practice are, overlooked.

Cisco uncorks 26 security patches for switches, firewalls

Network World

Cisco has bundled 25 security advisories that describe 26 vulnerabilities in Cisco NX-OS switch and Firepower FXOS firewall software. Also see What to consider when deploying a next generation firewall. | To read this article in full, please click hereWhile the 26 alerts describe vulnerabilities that have a Security Impact Rating of “High,” most –23 – affect Cisco NX-OS software, and the remaining three involve both software packages.

To secure industrial IoT, use segmentation instead of firewalls

Network World

To read this article in full, please click hereThe internet of things (IoT) has been top of mind for network and security professionals for the better part of the past five years. This has been particularly true for the area of industrial IoT (IIoT). Connected industrial devices are nothing new, but most IT people aren’t familiar with them because they have been managed by operational technology (OT) teams.

What to consider when deploying a next-generation firewall

Network World

Firewalls have become ubiquitous across enterprises over the past decade, but the combination of new and varied access methods combined with increasingly sophisticated attacks has forced network operators and security professionals to constantly evaluate their defenses. MORE AT NETWORK WORLD : What is a firewall? + To read this article in full or to leave a comment, please click here

The best enterprise level firewalls: Rating 10 top products

Network World

You need a firewall. Recognizing that you need a firewall is the first – and most obvious -- step. The next crucial step in the decision-making process is determining which firewall features and policies best-suit your company’s needs. Today’s enterprise firewalls must be able to secure an increasingly complex network that includes traditional on-premises data center deployments, remote offices and a range of cloud environments.

5 open source alternatives for routing/firewall

Network World

These open source products deliver simple routing and networking features, plus they are combined with security functionality, starting with a basic firewall and possibly including antivirus, antispam and Web filtering. To read this article in full or to leave a comment, please click hereEconomical and flexible Open source software offers an economical and flexible option for deploying basic home, SMB or even enterprise networking.

The best enterprise level firewalls: Rating 10 top products

Network World

You need a firewall. Recognizing that you need a firewall is the first – and most obvious -- step. The next crucial step in the decision-making process is determining which firewall features and policies best-suit your company’s needs. Today’s enterprise firewalls must be able to secure an increasingly complex network that includes traditional on-premises data center deployments, remote offices and a range of cloud environments.

4 tools for managing firewall rules

Network World

Firewall devices are only as good as the hundreds, or even thousands, rules that govern them. Misconfigurations, unused rules and conflicting rules can cause firewalls to fail in their crucial missions. Firewall security management products can help security managers monitor compliance, orchestrate device policies, optimize rules and manage firewall changes. To read this article in full or to leave a comment, please click here (Insider Story

Cisco warns a critical patch is needed for a remote access firewall, VPN and router

Network World

Cisco is warning organizations with remote users that have deployed a particular Cisco wireless firewall, VPN and router to patch a critical vulnerability in each that could let attackers break into the network. The vulnerability is in the web-based management interface of three products: Cisco’s RV110W Wireless-N VPN Firewall, RV130W Wireless-N Multifunction VPN Router and RV215W Wireless-N VPN Router. To read this article in full, please click here

Flaws expose Cisco small-business routers, firewalls to hacking

Network World

Three models of Cisco wireless VPN firewalls and routers from the small business RV series contain a critical unpatched vulnerability that attackers can exploit remotely to take control of devices. The vulnerability is located in the Web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, RV130W Wireless-N Multifunction VPN Router and RV215W Wireless-N VPN Router. To read this article in full or to leave a comment, please click here

Are next-generation firewalls legacy technology?

Network World

A few years ago, next-generation firewalls (NGFWs) came out of nowhere to become a network security staple. NGFWs followed in the footsteps of earlier firewalls—physical appliances installed inline to protect private networks from the public Internet. Rather than deploy physical network devices, data center firewalling of east-west traffic is rapidly moving toward software-based micro-segmentation tools (i.e.

Review: 5 open source alternatives for routers/firewalls

Network World

Plus, they are combined with security functionality, starting with a basic firewall and possibly including antivirus, antispam and Web filtering. To read this article in full or to leave a comment, please click here (Insider Story Open source software offers an economical and flexible option for deploying basic home, SMB or even enterprise networking. These open source products deliver simple routing and networking features, like DHCP and DNS.

Fight firewall sprawl with AlgoSec, Tufin, Skybox suites

Network World

New and innovative security tools seem to be emerging all the time, but the frontline defense for just about every network in operation today remains the trusty firewall. They aren’t perfect, but if configured correctly and working as intended, firewalls can do a solid job of blocking threats from entering a network, while restricting unauthorized traffic from leaving. The problem network administrators face is that as their networks grow, so do the number of firewalls.

Fight firewall sprawl with AlgoSec, Tufin, Skybox suites

Network World

New and innovative security tools seem to be emerging all the time, but the frontline defense for just about every network in operation today remains the trusty firewall. They aren’t perfect, but if configured correctly and working as intended, firewalls can do a solid job of blocking threats from entering a network, while restricting unauthorized traffic from leaving. The problem network administrators face is that as their networks grow, so do the number of firewalls.

Palo Alto Networks: Proactively Averting Cyber Attacks

CTOvision

Their trifecta of Next Generation Firewall, Threat Intelligence and Advanced Endpoint Protection, can be the key to proactive mitigation of the cyber threat. Related articles. Architecture CTO Cyber Security Advanced Endpoint Protection Cyber Threat firewall Next Generation Firewall Palo Alto Networks Threat Intelligence By Charles Hall. Cyber threats are becoming more advanced, persistent, and focused.

What is a firewall? How they work and how they fit into enterprise security

Network World

Firewalls been around for three decades, but they’ve evolved drastically to include features that used to be sold as separate appliances and to pull in externally gathered data to make smarter decisions about what network traffic to allow and what traffic to block. What is a firewall? To read this article in full, please click here

Face-off: Cisco vs. Fortinet for enterprise firewalls

Network World

Firewalls have been on the front lines of network security for 25 years. Today, two of the top enterprise firewalls are Cisco’s Adaptive Security Appliance (ASA) and Fortinet’s Fortigate, according to reviews by users in the IT Central Station community. To read this article in full or to leave a comment, please click here (Insider Story Over time they’ve evolved beyond simple packet filtering to take on a wider and deeper variety of tasks to block modern threats.

Cisco touts next-gen firewall gear for midsize installations

Network World

Cisco is coming out with four next-generation firewall boxes aimed at giving smaller organizations protection that is better sized to their needs and engineered to minimize performance hits as additional security services are turned on. To read this article in full or to leave a comment, please click here

Cisco discloses PIX firewall, IOS software security holes

Network World

To read this article in full or to leave a comment, please click hereCisco has warned of a high priority security hole in its IOS software that could have let attackers snatch memory contents from a variety of products that could lead to the disclosure of confidential information. More on Network World: Cisco buys into containers with Container X acquisition +.

What users love (and hate) about 4 leading firewall solutions

Network World

While always an integral part of a company’s security procedures, firewalls are becoming even more important as more companies move to the cloud and software defined networks. A firewall is a network security system that controls and monitors incoming and outgoing network traffic, based on preset security parameters. Firewalls create a barrier between a secure internal network and a potentially less-secure outside network.

Cisco starts patching firewall devices against NSA-linked exploit

Network World

Cisco Systems has started releasing security patches for a critical flaw in Adaptive Security Appliance (ASA) firewalls targeted by an exploit linked to the U.S. To read this article in full or to leave a comment, please click hereNational Security Agency. The exploit, dubbed ExtraBacon, is one of the tools used by a group that the security industry calls the Equation, believed to be a cyberespionage team tied to the NSA.

Java and Python FTP attacks can punch holes through firewalls

Network World

The Java and Python runtimes fail to properly validate FTP URLs, which can potentially allow attackers to punch holes through firewalls to access local networks. To read this article in full or to leave a comment, please click hereOn Saturday, security researcher Alexander Klink disclosed an interesting attack where exploiting an XXE (XML External Entity) vulnerability in a Java application can be used to send emails.

BlackNurse attack: 1 laptop can DoS some firewalls, bring down big servers

Network World

An attacker doesn’t need an IoT botnet or massive resources for a denial of service attack to knock large servers offline; researchers warned that all it takes is one laptop for a “ BlackNurse ” attack to bring vulnerable Cisco, SonicWall, Palo Alto and Zyxel firewalls to their knees. In their report ( pdf ), the researchers wrote: To read this article in full or to leave a comment, please click here

How Google reinvented security and eliminated the need for firewalls

Network World

To read this article in full or to leave a comment, please click here (Insider Story SAN FRANCISCO -- In some ways, Google is like every other large enterprise. It had the typical defensive security posture based on the concept that the enterprise is your castle and security involves building moats and walls to protect the perimeter. Over time, however, that perimeter developed holes as Google’s increasingly mobile workforce, scattered around the world, demanded access to the network.

A VPN service that gets around the Great Firewall of China legally

Network World

To read this article in full, please click hereThe saying goes that China is the world’s factory. For many companies around the world, their products or components of their products are produced in mainland China. At the same time, China’s population of more than a billion people makes it one of the world’s largest consumer markets. Thus, for either production or sales, many companies want to do business in China and have established facilities there.

How OPM Could Have Avoided the Data Breach

CTOvision

Knowing the interaction of firewall rules, and uncovering vulnerabilities introduced by misconfiguration, is vital. Uncovering unused, hidden, and redundant rules, which can have unforeseen impact on overall security, would help to simplify the overall firewall environment. Cleaning up and optimizing firewall configurations can remove obscurity and improve security, manageability, and performance. Related articles.

FireMon, Breaking into Australian and New Zealand Markets

CTOvision

We don’t make the firewall, we don’t make the F5 load balancer, we don’t make the Cisco router, but we make them better,” DeBell said. The most significant play for FireMon, according to DeBell, was the move toward next-generation firewall. Mick Stephens, FireMon’s A/NZ regional manager, said that their next-generation firewall process was like getting rid of redundant rulesets and overshadowed rule sets. Related articles. Katie Kennedy.

DoS technique lets a single laptop take down an enterprise firewall

Network World

At a time when the size of distributed denial-of-service attacks has reached unprecedented levels, researchers have found a new attack technique in the wild that allows a single laptop to take down high-bandwidth enterprise firewalls. BlackNurse uses ICMP Type 3 (Destination Unreachable) Code 3 (Port Unreachable) packets instead and some firewalls consume a lot of CPU resources when processing them. To read this article in full or to leave a comment, please click here

IDG Contributor Network: Barracuda protects industrial IoT with network-based firewall

Network World

How do IoT firewalls protect against such threats? To read this article in full or to leave a comment, please click hereMany industrial IoT systems have open doors that create unintended vulnerabilities. What information could be exposed by open communications protocols? How do hackers identify vulnerable systems? What security resources are available? TCP Port 502 vulnerabilities.

Cisco hit with software and physical issues

Network World

First, the more serious issue, a firewall flaw. Security researcher Positive Technologies, which hunts for security vulnerabilities, posted a warning that a vulnerability in Cisco firewall appliances could allow hackers to cause them to fail.

How to buy SASE

Network World

Vendors have been doing backflips trying to cobble together complete SASE offerings, which would include at a minimum software-defined WAN (SD-WAN), secure Web gateway (SWG), cloud access security broker (CASB), firewall-as-a-service (FWaaS) and zero trust network access (ZTNA).

WAN 131

Cisco patches three critical holes in IOS XE software

Network World

The three critical warnings are part of a big release of 32 security alerts , many of which are IOS XE-related, including firewall, SD-WAN and wireless access vulnerabilities. To read this article in full, please click here

WAN 104

Palo Alto software advances end-to-end enterprise cloud security

Network World

Managed through a single console, Prisma includes firewall as a service, Zero Trust network access and a secure web gateway. To read this article in full, please click here

Palo Alto grows cloud security portfolio with new Prisma release, Bridgecrew buy

Network World

Managed through a single console, Prisma includes firewall as a service, zero-trust network access, a cloud access security broker and a secure web gateway. To read this article in full, please click herePalo Alto had a busy week.

Microsoft touts first PCs to ship natively with secure Pluton chip

Computerworld Vertical IT

As organizations continue to wrestle with how to manage a hybrid workforce, security outside the corporate firewall continues to play a huge role in day-to-day IT operations. To read this article in full, please click hereFollowing the October release of Windows 11, which boasted features aimed at enabling hybrid work, Microsoft last week announced the first PCs with its Pluton chip-to-cloud security technology.