Unfortuantely our scheduled speaker became quite ill prior to the meeting, so our SIG meeting was mainly a discussion. We discovered we had many resources familiar with the topic of Firewalls. Here is some resource information that was brought out at the meeting.
Here are some resources (some of them fun reading) for investigating this subject further:
***Note Credit to "[email protected]"
Incidentally to join that list, which discusses firewall technology in considerable technical detail, send e-mail to [email protected], with the message: subscribe firewalls as the text.
Here are some mail additional mail lists and web sites of interest to those concerned about securing systems on the Internet.
Step 1 --- Work with the corporate folks ... understand what they are
planning to do firewall-wise. If you "go off on your own," then you
will
get hunted down and gathered back in the future. Also, for best company
safety, you should really try to work with them to understand their
policy,
stance, firewall implementation type (app level, network level) ... and
how it would be configured (authenticated proxies? porno filtering
proxies?
firewall protected on the "inside" also? what secure access mechanism?
can connect from outside ? (to admin it?), etc, etc. --- all those
details)
Corporate Security is your friend ... or should be. Who are the company
auditors? As long as you are on this corporate friend-building, talk to
them -- do they have an understanding on the Internet and firewalls ?
If not, you can work with them to form policy/standards/etc. (big win
here!)
Step 2 -- Understand a bit more about the types of firewalls out there
(not just product types, but firewall types: packet filtering,
application
level and hybrid ... and all the types in between). Read the Cheswick
and
Bellovin book, the Building Internet Firewalls, Brent Chapman and Liz
Zwickey
... heck read most any firewall type book you can find :-) Take a
class. etc.
Step 3 -- share some progress on the decision making to the firewalls
mailing
list. We'll listen, email back, etc. Don't share anything you wouldn't
want the
public to know.
Step 4 -- Hire someone with experience to help out if need be. There
are some
good consulting firms around ... there are some cheap, mediocre ones,
also, so
be careful.
Lastly here is some advice about setting up a firewall that I picked up off the [email protected] mail list. It seems to make a lot of sense:
Last updated 1/10/98
Published courtesy of RightNet, Inc. sponsors of the Internet SIG.