Repowering an Open Source Firewall Based on a Quantitative Evaluation
نویسندگان
چکیده
The increased cyber-attacks in recent years have included violation of firewalls. Based on these facts, our study and main objective is to present the formation of a platform for open source firewall, which induces a highly efficient method to strengthen detection, control and also mitigation of such assaults. In order to fulfill these aims, we designed and implemented an experimental LAN / WAN network environment separated by a firewall device configured in three different software implementations: PfSense, Zentyal and ClearOS. Subsequently, in order to assess quantitatively the performance and efficiency of such systems against cyber-attacks, a firewall was repowered integrating and consolidating an inspection, unifying threat management solutions. The outcome of this research demonstrates clearly and objectively the efficiency and importance of our study.
منابع مشابه
Comparison of Open Source Learning Management Softwares and Presenting a Native Evaluation Tool
Introduction: Nowadays all educational institutes are trying to use technology in their structure. This effort has been faced with different barriers, including cost, time, and support. Therefore, using open source softwares can partially help us in using technology. In this article, we review main features of several open source learning management softwares, while presenting a tool which incl...
متن کامل, U . K . Isbn : 978 - 988 - 98671 - 9 - 5 Wce 2008
techniques that provide firewall-level authentication to ensure authorized access to potentially vulnerable network services. Although these techniques serve as powerful protection mechanism against the intruders, they still suffer from a major problem. The lack of association between the authentication process and the follow-on TCP connection to be established is the most crucial problem still...
متن کاملVermont - A Versatile Monitoring Toolkit for IPFIX and PSAMP
In this paper, we present Vermont, a flexible network monitoring toolkit for packet filtering and packet sampling, flow accounting, and flow aggregation. This toolkit supports the export and collection of IPFIX/PSAMP compliant monitoring data. Packet capturing is based on the well-known pcap library, which enables deployment on various hardware platforms and operating systems. Apart from an ove...
متن کاملNtop: a Lightweight Open-Source Network IDS
Almost every new company that connects to the Internet installs a firewall to protect company assets hence prevent unauthorised access to its private network. Despite this general goal, many network administrators decided to improve network security by adding a network-based intrusion detection system (NIDS) able to detect potentially hostile traffic. Although commercial NIDS are quite powerful...
متن کاملMachine learning-assisted virtual patching of web applications
Web applications are permanently being exposed to attacks that exploit their vulnerabilities. In this work we investigate the application of machine learning techniques to leverage Web Application Firewall (WAF), a technology that is used to detect and prevent attacks. We propose a combined approach of machine learning models, based on one-class classification and ngram analysis, to enhance the...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2014