WEBINAR: The Impact of Firewall Sprawl

CTOvision

New research with the Aberdeen Group highlights how network complexity is adding cost and increasing risk. Register >> Network firewalls have long been established as the ubiquitous first line of defense for every organization’s network security strategy. But the evolving needs of the enterprise have dramatically changed the make-up – and complexity – of network infrastructures. Better manage network configurations. Minimize security risks.

Palo Alto Networks: A Next Generation Firewall

CTOvision

Palo Alto Networks protects thousands of enterprise and governments from cyber threats. They rely on a deep expertise and commitment to innovation to continually enhance their game-changing security platform. The Palo Alto Networks security platform natively brings together all key network security functions, including advanced threat protection, firewall, IDS/IPS and URL filtering.

Kicking the Tires: Verisign DNS Firewall

CTOvision

Cognitio has been evaluating the new Verisign DNS Firewall along with its Recursive DNS service for the last several weeks. Our bottom line conclusion: Integration of the Verisign DNS Firewall into an existing environment couldn’t be more seamless, configuration and management are a breeze, and it delivers immediate benefit to the security posture of any environment. For more information on the DNS Firewall and other Verisign Security Services check out their website: [link].

Azure Storage Account Networking: When to Use Firewalls and Service Endpoints

Linux Academy

Recently, when building content for one of my upcoming courses, Microsoft Azure Architect Technologies – Exam AZ-300 , I found the Microsoft documentation wasn’t immediately clear on the exclusivity of Storage Account Firewalls, and Service Endpoints. Storage Account Firewalls.

How have network firewalls evolved?

Network World

Firewalls have become ubiquitous across the enterprise IT landscape because of their proven ability to stop bad traffic from entering corporate networks and protect a company’s most valuable assets. So how have firewalls evolved over the years and what are the latest trends in firewall security

Palo Alto Networks: Proactively Averting Cyber Attacks

CTOvision

It''s important to utilize every form of security to get closer to proactive prevention. Products from Palo Alto Networks can give you that platform approach. Palo Alto Networks, Fortinet and Check Point Software: 3 Security Stocks to Watch in 2015 (thestreet.com).

Cisco uncorks 26 security patches for switches, firewalls

Network World

Cisco has bundled 25 security advisories that describe 26 vulnerabilities in Cisco NX-OS switch and Firepower FXOS firewall software. While the 26 alerts describe vulnerabilities that have a Security Impact Rating of “High,” most –23 – affect Cisco NX-OS software, and the remaining three involve both software packages. Also see What to consider when deploying a next generation firewall. | Get regularly scheduled insights by signing up for Network World newsletters. ].

Tempered Networks simplifies secure network connectivity and microsegmentation

Network World

The TCP/IP protocol is the foundation of the internet and pretty much every single network out there. There’s nothing in the protocol for security, mobility, or trusted authentication. This is one of the reasons networks are so complicated today.

The best enterprise level firewalls: Rating 10 top products

Network World

You need a network-security tool that examines the flow of packets in and out of the enterprise, governed by rules that decide whether that flow is safe, malicious or questionable and in need of inspection. You need a firewall. Recognizing that you need a firewall is the first – and most obvious -- step. The next crucial step in the decision-making process is determining which firewall features and policies best-suit your company’s needs.

5 open source alternatives for routing/firewall

Network World

Economical and flexible Open source software offers an economical and flexible option for deploying basic home, SMB or even enterprise networking.

Cisco warns a critical patch is needed for a remote access firewall, VPN and router

Network World

Cisco is warning organizations with remote users that have deployed a particular Cisco wireless firewall, VPN and router to patch a critical vulnerability in each that could let attackers break into the network. More about edge networking. How edge networking and IoT will reshape data centers. How edge computing can help secure the IoT. All three products are positioned as remote-access communications and security devices.

What is a firewall? How they work and how they fit into enterprise security

Network World

Firewalls been around for three decades, but they’ve evolved drastically to include features that used to be sold as separate appliances and to pull in externally gathered data to make smarter decisions about what network traffic to allow and what traffic to block. What is a firewall?

Are next-generation firewalls legacy technology?

Network World

A few years ago, next-generation firewalls (NGFWs) came out of nowhere to become a network security staple. These devices combined traditional L3/L4 packet filtering with deep packet inspection, IPS, and other network security services along with knowledge about users and applications. This broad functionality packaging changed the network security paradigm—everyone needed, or at least wanted a NGFW at the perimeter or within the internal network.

Using Secure Configurations | Standardize Your Security

Linux Academy

This week, we’re discussing secure configurations, and why they matter. Our friends at the Center for Internet Security (CIS) listed “Secure Configurations” as the No. 5 most important security control on this year’s Top 20 hit list.

The best enterprise level firewalls: Rating 10 top products

Network World

You need a network-security tool that examines the flow of packets in and out of the enterprise, governed by rules that decide whether that flow is safe, malicious or questionable and in need of inspection. You need a firewall. Recognizing that you need a firewall is the first – and most obvious -- step. The next crucial step in the decision-making process is determining which firewall features and policies best-suit your company’s needs.

How OPM Could Have Avoided the Data Breach

CTOvision

Recently, a data breach at the Office of Personnel Management ( OPM ) demonstrated once again the vulnerability of data and how even when an organization has seemingly deployed the right tools, security holes can be exploited to gain access to highly sensitive information. While the initial intrusion mostly impacted Department of Homeland Security ( DHS ) personnel, it was first detected in September, and it took DHS seven months to conclude their investigation.

What to consider when deploying a next-generation firewall

Network World

Firewalls have become ubiquitous across enterprises over the past decade, but the combination of new and varied access methods combined with increasingly sophisticated attacks has forced network operators and security professionals to constantly evaluate their defenses. MORE AT NETWORK WORLD : What is a firewall? +

4 tools for managing firewall rules

Network World

Firewall devices are only as good as the hundreds, or even thousands, rules that govern them. Misconfigurations, unused rules and conflicting rules can cause firewalls to fail in their crucial missions. Firewall security management products can help security managers monitor compliance, orchestrate device policies, optimize rules and manage firewall changes.

Cisco discloses PIX firewall, IOS software security holes

Network World

Cisco has warned of a high priority security hole in its IOS software that could have let attackers snatch memory contents from a variety of products that could lead to the disclosure of confidential information. More on Network World: Cisco buys into containers with Container X acquisition +. Specifically Cisco said the vulnerability is due to “insufficient condition checks in the part of the code that handles [Internet Key Exchange] IKEv1 security negotiation requests.

Outbound Traffic Filtering | Roadmap to Securing Your Infrastructure

Linux Academy

This is filtering provided at the network edge by a firewall with rules (ACLs) restricting what internal users are allowed to access. Some firewalls have the ability to filter by an application (layer 7 firewalls), but we’re going to concentrate on standard packet-filtering firewalls and their capabilities. Since DNS is so important, many networks don’t prevent DNS outbound, and attackers know this.

SMB 40

Review: 5 open source alternatives for routers/firewalls

Network World

Open source software offers an economical and flexible option for deploying basic home, SMB or even enterprise networking. These open source products deliver simple routing and networking features, like DHCP and DNS. Plus, they are combined with security functionality, starting with a basic firewall and possibly including antivirus, antispam and Web filtering.

Palo Alto Networks Uses Neural Networks to Attack Insider Threat

CTOvision

Interestingly enough, Palo Alto Networks is working on ways to help its customers leverage the high fidelity data coming out of its Enterprise Security Platform. Analysis Architecture CTO Big Data Palo Alto Networks By Dan Cybulski.

CIOs Need To Know Why Antivirus Software Can Create False Security

The Accidental Successful CIO

CIOs like to think of their antivirus software as providing them with a wall of defense between their corporate networks and the big scary outside world. All this leads to CIOs who are going through each day with a false sense of security.

Fight firewall sprawl with AlgoSec, Tufin, Skybox suites

Network World

New and innovative security tools seem to be emerging all the time, but the frontline defense for just about every network in operation today remains the trusty firewall. They aren’t perfect, but if configured correctly and working as intended, firewalls can do a solid job of blocking threats from entering a network, while restricting unauthorized traffic from leaving. For admins trying to configure firewall rules, the task can quickly become unmanageable.

Fight firewall sprawl with AlgoSec, Tufin, Skybox suites

Network World

New and innovative security tools seem to be emerging all the time, but the frontline defense for just about every network in operation today remains the trusty firewall. They aren’t perfect, but if configured correctly and working as intended, firewalls can do a solid job of blocking threats from entering a network, while restricting unauthorized traffic from leaving. For admins trying to configure firewall rules, the task can quickly become unmanageable.

What is microsegmentation? How getting granular improves network security

Network World

Microsegmentation is a method of creating secure zones in data centers and cloud deployments that allows companies to isolate workloads from one another and secure them individually. It’s aimed at making network security more granular. Microsegmentation vs. VLANs, firewalls and ACLs. Network segmentation isn’t new. Companies have relied on firewalls , virtual local area networks (VLAN) and access control lists (ACL) for network segmentation for years.

IDG Contributor Network: Barracuda protects industrial IoT with network-based firewall

Network World

What security resources are available? How do IoT firewalls protect against such threats? Many industrial IoT systems have open doors that create unintended vulnerabilities. What information could be exposed by open communications protocols? How do hackers identify vulnerable systems? TCP Port 502 vulnerabilities. Many industrial systems use TCP Port 502, which allows two hosts to establish a connection and exchange streams of data.

Overcoming the Equation: Security = Friction

CTOvision

Why does security have to be so onerous? Is this password secure enough: Mxyzptlk? Now that’s secure – good luck remembering it! As you try to simplify the user experience and reduce friction, the cost for security goes up. Can we overcome the friction of security?

National pen test execution standard would improve network security

Network World

People are worried about their companies’ networks and computer systems being hacked and data being stolen. Also read: What to consider when deploying a next-generation firewall | Get regularly scheduled insights: Sign up for Network World newsletters ]. Penetration tests involve live tests of computer networks, systems, or web applications to find potential vulnerabilities.

Face-off: Cisco vs. Fortinet for enterprise firewalls

Network World

Firewalls have been on the front lines of network security for 25 years. Today, two of the top enterprise firewalls are Cisco’s Adaptive Security Appliance (ASA) and Fortinet’s Fortigate, according to reviews by users in the IT Central Station community. Cisco’s answer is Cisco Security Manager (CSM). Over time they’ve evolved beyond simple packet filtering to take on a wider and deeper variety of tasks to block modern threats.

Cisco touts next-gen firewall gear for midsize installations

Network World

Cisco is coming out with four next-generation firewall boxes aimed at giving smaller organizations protection that is better sized to their needs and engineered to minimize performance hits as additional security services are turned on. That architecture enables custom processing of traffic requiring threat inspection, and also supports tagging traffic that doesn’t need threat inspection so it flows through only the separate network processing unit.

Automation critical to scalable network security

Network World

Securing the business network has been and continues to be one of the top initiatives for engineers. To combat this, security professionals have deployed a number of security tools, including next-generation firewalls (NGFW) such as Cisco’s Firepower, which is one of the most widely deployed in the industry. Managing firewalls becomes increasingly difficult.

A Flicker Of Light: A new security stack points the path to safety

CTOvision

Defense-in-depth, the gold standard in cyber security, has failed. The basis behind defense-in-depth is to deploy redundant layers of security products to defeat every part the cyber kill chain. Conceptually the new security stack is a hardware-based virtual enclave.

What users love (and hate) about 4 leading firewall solutions

Network World

While always an integral part of a company’s security procedures, firewalls are becoming even more important as more companies move to the cloud and software defined networks. A firewall is a network security system that controls and monitors incoming and outgoing network traffic, based on preset security parameters. Firewalls create a barrier between a secure internal network and a potentially less-secure outside network.

How Google reinvented security and eliminated the need for firewalls

Network World

It had the typical defensive security posture based on the concept that the enterprise is your castle and security involves building moats and walls to protect the perimeter. Over time, however, that perimeter developed holes as Google’s increasingly mobile workforce, scattered around the world, demanded access to the network. SAN FRANCISCO -- In some ways, Google is like every other large enterprise.