Average Reviews:
(More customer reviews)The book furnishes a comprehensive understanding of how to secure a network. Firewalls are the first and most common defense. If your network is large enough, then you may or should have several of these, between your internal subnets. And the network routes that face the rest of the internet should have a DMZ.
By now, most readers are already aware of the need for firewalls. What you get here are practical steps in installing and managing these. But another key extra is how to maintain virtual private nets. An acknowledgement that many companies have people who need to access securely from outside the corporate network. A VPN can be much trickier to set up, and there is a computational cost to using it.
The text also goes into how to handle IPv6 networks, and when these interact with the usual IPv4 networks of the outside world. A bit unclear what is the market demand for these IPv6 nets, thus far. I've nothing against them. But v6 deployment has been much slower than expected. Still, it's good that the book includes them in its discussion.
Click Here to see more reviews about: End-to-End Network Security: Defense-in-Depth
End-to-End Network SecurityDefense-in-DepthBest practices for assessing and improving network defenses and responding to security incidentsOmar SantosInformation security practices have evolved from Internet perimeter protection to an in-depth defense model in which multiple countermeasures are layered throughout the infrastructure to address vulnerabilities and attacks. This is necessary due to increased attack frequency, diverse attack sophistication, and the rapid nature of attack velocity–all blurring the boundaries between the network and perimeter.End-to-End Network Security is designed to counter the new generation of complex threats. Adopting this robust security strategy defends against highly sophisticated attacks that can occur at multiple locations in your network. The ultimate goal is to deploy a set of security capabilities that together create an intelligent, self-defending network that identifies attacks as they occur, generates alerts as appropriate, and then automatically responds.End-to-End Network Security provides you with a comprehensive look at the mechanisms to counter threats to each part of your network. The book starts with a review of network security technologies then covers the six-step methodology for incident response and best practices from proactive security frameworks. Later chapters cover wireless network security, IP telephony security, data center security, and IPv6 security. Finally, several case studies representing small, medium, and large enterprises provide detailed example configurations and implementation strategies of best practices learned in earlier chapters.Adopting the techniques and strategies outlined in this book enables you to prevent day-zero attacks, improve your overall security posture, build strong policies, and deploy intelligent, self-defending networks."Within these pages, you will find many practical tools, both process related and technology related, that you can draw on to improve your risk mitigation strategies."–Bruce Murphy, Vice President, World Wide Security Practices, Cisco Omar Santos is a senior network security engineer at Cisco®. Omar has designed, implemented, and supported numerous secure networks for Fortune 500 companies and the U.S. government. Prior to his current role, he was a technical leader within the World Wide Security Practice and the Cisco Technical Assistance Center (TAC), where he taught, led, and mentored many engineers within both organizations.Guard your network with firewalls, VPNs, and intrusion prevention systemsControl network access with AAAEnforce security policies with Cisco Network Admission Control (NAC)Learn how to perform risk and threat analysisHarden your network infrastructure, security policies, and procedures against security threatsIdentify and classify security threatsTrace back attacks to their sourceLearn how to best react to security incidentsMaintain visibility and control over your network with the SAVE frameworkApply Defense-in-Depth principles to wireless networks, IP telephony networks, data centers, and IPv6 networks This security book is part of the Cisco Press® Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks.Category: Networking: SecurityCovers: Network security and incident response$55.00 USA / $63.00 CAN
Get 23% OFF
Click here for more information about End-to-End Network Security: Defense-in-Depth
No comments:
Post a Comment