NSA Approved Network Security Course OutlinesCMSY 163 – FIREWALLS AND INTERNET SECURITY
1. Firewall Planning and Design
1.1. Misconceptions about Firewalls
1.2. What is a Security Policy?
1.3. What is a Firewall?
1.4. Types of Firewall Protection
1.5. Limitations of Firewalls
1.6. Evaluating Firewall Packages
2. Developing a Security Policy
2.1. What is a Security Policy
2.2. Why is a Security Policy Important?
2.3. Goals for an Effective Security Policy
2.4. Steps to Building a Security Policy
2.4.1. Develop a Policy Team
2.4.2. Determine Overall Approach to Security
2.4.3. Identify Assets to be Protected
2.4.4. Determine What Should be Audited for Security
2.4.5. Identify Security Risks
2.4.6. Define Acceptable Use
2.5. Accounting for What the Firewall Cannot Do
2.6. Other Security Policy Topics
2.7. Defining Responses to Security Violations
2.8. Overcoming Administrative Obstacles
2.8.1. Educating Employees
2.8.2. Presenting and Reviewing the Process
2.8.3. Amending the Security Policy
3. Firewall Configuration Strategies
3.1. Establishing Rules and Restrictions for Your Firewall
3.2. Firewall Configuration Strategies
3.3. Different Firewall Configuration Strategies You Can Use
3.4. Approaches that Add Functionality to Your Firewall
4. Packet Filtering4.1. Understanding packets and Packet Filtering
4.2. Approaches to Packet Filtering
4.3. Setting Specific Packet Filter Rules
5. Working with Proxy Servers and Application –Level Firewalls
5.1. Overview of Proxy Servers
5.2. Goals of proxy Servers
5.3. Proxy Server Configuration Considerations
5.4. Choosing a Proxy Server
5.5. Proxy Server-Based Firewalls Compared
5.6. Reverse Proxies
5.7. When a Proxy Server is not the Correct Choice
6. Authenticating Users
6.1. The Authentication Process in General
6.2. How Firewalls Implement the Authentication Process
6.3. Types of Authentication with Firewalls
6.3.1. User Authentication
6.3.2. Client Authentication
6.3.3. Session Authentication
6.4. Centralized Authentication
6.4.1. Kerberos Authentication
6.4.2. TACACIS+
6.4.3. Radius
6.5. Password Security Issues
6.6. Password Security Tools
6.7. Other Authentication Systems
7. Encryption and Firewalls
7.1. Why Firewalls Need to Use Encryption
7.2. Digital Certificates and Public and Private Keys
7.3. Analyzing Popular Encryption Schemes
7.4. Using IPSec Encryption
8. Choosing A Bastian Host
8.1. Installing A Bastian Host: General Requirements
8.2. Selecting the Host Machine
8.3. Positioning the Bastian Host
8.4. Configuring Your Bastian Host
8.5. Handling Backups
8.6. Auditing the Bastian Host
8.7. Connecting the Bastian Host
9. Setting up a Virtual Private Network
9.1. VPN Components and Operations
9.2. Types of VPN’s
9.3. VPN Set-Ups
9.4. Tunneling Protocols Used with VPN’s
9.5. Enabling Remote Access within VPN’s
9.6. VPN Best Practices
10. Building your own Firewall
10.1. Enterprise Versus Desktop Firewalls
10.2. Desktop Firewalls
10.3. Enterprise Firewalls
11. Ongoing Administration
11.1. Making Your Firewall Meet New Needs
11.1.1. Identifying New Risks
11.1.2. Adding Software Updates and Patches
11.2. Adhering to Proven Principles
11.2.1. Environmental Management
11.3. Using Remote Management Interface
11.3.1. Preparing Usage Reports
11.3.2. Watching for Suspicious Events
11.4. Security Breaches Will Happen!
11.4.1. Using an Intrusion Detection System
11.4.2. Receiving Security Alerts
11.4.3. When an Intrusion Occurs
11.4.4. During and After an Intrusion
11.4.5. Compiling Legal Evidence
11.5. Configuring Advanced Firewall Functions
